CVE-2006-0696

SQL injection vulnerability in Zen Cart before 1.2.7 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

References

http://www.vupen.com/english/advisories/2006/0546

http://www.osvdb.org/23110

http://secunia.com/advisories/18801

https://exchange.xforce.ibmcloud.com/vulnerabilities/24701

http://sourceforge.net/project/shownotes.php?release_id=392886