Known Vulnerabilities for Zen Cart by Zen-cart
Listed below are 10 of the newest known vulnerabilities associated with "Zen Cart" by "Zen-cart".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40098 json | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community E... | Not Provided | 2026-04-20 | 2026-04-20 |
| CVE-2026-39564 json | Insertion of Sensitive Information Into Sent Data vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart ... | Not Provided | 2026-04-08 | 2026-04-14 |
| CVE-2026-32526 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VillaTheme Abandoned Ca... | Not Provided | 2026-03-25 | 2026-03-25 |
| CVE-2026-24613 json | Missing Authorization vulnerability in Ecwid by Lightspeed Ecommerce Shopping Cart Ecwid Shopping Cart ecwid-shopping-cart al... | Not Provided | 2026-01-23 | 2026-04-01 |
| CVE-2026-6370 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HashThemes Mini Ajax Ca... | Not Provided | 2026-04-15 | 2026-04-16 |
| CVE-2026-4841 json | A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the file for... | Not Provided | 2026-03-26 | 2026-03-26 |
| CVE-2026-4090 json | The Inquiry Cart plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.4.2... | Not Provided | 2026-04-22 | 2026-04-22 |
| CVE-2026-3599 json | The Riaxe Product Customizer plugin for WordPress is vulnerable to SQL Injection via the 'options' parameter keys within 'pro... | Not Provided | 2026-04-16 | 2026-04-16 |
| CVE-2026-2838 json | The Whole Enquiry Cart for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘woowhole_... | Not Provided | 2026-04-08 | 2026-04-08 |
| CVE-2026-0552 json | The Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpsc_display_pro... | Not Provided | 2026-04-04 | 2026-04-06 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Zen-cart | Zen Cart | 2008 | |||
| Application | Zen-cart | Zen Cart | 1.6.0 | |||
| Application | Zen-cart | Zen Cart | 1.5.7b | |||
| Application | Zen-cart | Zen Cart | 1.5.7a | |||
| Application | Zen-cart | Zen Cart | 1.5.7 | |||
| Application | Zen-cart | Zen Cart | 1.5.6c | |||
| Application | Zen-cart | Zen Cart | 1.5.6b | |||
| Application | Zen-cart | Zen Cart | 1.5.6a | |||
| Application | Zen-cart | Zen Cart | 1.5.6 | |||
| Application | Zen-cart | Zen Cart | 1.5.5f | |||
| Application | Zen-cart | Zen Cart | 1.5.5e | |||
| Application | Zen-cart | Zen Cart | 1.5.5d | |||
| Application | Zen-cart | Zen Cart | 1.5.5c | |||
| Application | Zen-cart | Zen Cart | 1.5.5b | |||
| Application | Zen-cart | Zen Cart | 1.5.5a | |||
| Application | Zen-cart | Zen Cart | 1.5.5 | |||
| Application | Zen-cart | Zen Cart | 1.5.4 | |||
| Application | Zen-cart | Zen Cart | 1.5.3 | |||
| Application | Zen-cart | Zen Cart | 1.5.3 | |||
| Application | Zen-cart | Zen Cart | 1.5.2 |