Page 5 of 21 results (0.001 seconds)
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2004-2024
https://notcve.org/view.php?id=CVE-2004-2024
The distribution of Zen Cart 1.1.4 before patch 2 includes certain debugging code in the Admin password retrieval functionality, which allows attackers to gain administrative privileges via password_forgotten.php. • http://www.zen-cart.com/modules/ipb/index.php?showtopic=4873 http://www.zen-cart.com/modules/mydownloads/viewcat.php?cid=31&orderby=dateD •