Unrated severityNVD Advisory· Published Feb 15, 2006· Updated Apr 16, 2026

CVE-2006-0697

Description

Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via unspecified vectors, probably direct requests.

Affected products

Zen Cart/Zen Cart11 versions
cpe:2.3:a:zen-cart:zen_cart:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:zen-cart:zen_cart:*:*:*:*:*:*:*:*range: <=1.2.6d
- cpe:2.3:a:zen-cart:zen_cart:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.2.0d:*:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.2.1d:*:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.2.1:patch1:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.2.2d:*:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.2.3d:*:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.2.4d:*:*:*:*:*:*:*
- cpe:2.3:a:zen-cart:zen_cart:1.2.5d:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/18801nvdPatchVendor Advisory
sourceforge.net/project/shownotes.phpnvdPatch
www.vupen.com/english/advisories/2006/0546nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000