CVE-2006-4218 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2006-4218

Directory traversal vulnerability in Zen Cart 1.3.0.2 and earlier allows remote attackers to include and possibly execute arbitrary local files via directory traversal sequences in the typefilter parameter.

Published: Aug 18, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-4218
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
zen_cart / zen_cart	1.2.4.1	1.2.4.1.x
zen_cart / zen_cart	1.2.1d	1.2.1d.x
zen_cart / zen_cart	1.2.3d	1.2.3d.x
zen_cart / zen_cart	1.2.1_patch1	1.2.1_patch1.x
zen_cart / zen_cart	1.2.5d	1.2.5d.x
zen_cart / zen_cart	1.2.0d	1.2.0d.x
zen_cart / zen_cart	1.3.0.2	1.3.0.2.x
zen_cart / zen_cart	1.2.4d	1.2.4d.x
zen_cart / zen_cart	1.2.2d	1.2.2d.x
zen_cart / zen_cart	1.2.6d	1.2.6d.x