📦 Opencart
by Opencart
🔍 What is Opencart?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
OpenCart CMS v4.0.2.2 lacks rate limiting on its login page, allowing unauthenticated attackers to perform brute force attacks against administrator passwords. This vulnerability affects all OpenCart ...
OpenCart 4.0.2.3 contains a Server-Side Template Injection vulnerability in the Theme Editor function that allows authenticated attackers to execute arbitrary code on the server. This affects OpenCart...
This Zip Slip vulnerability in OpenCart's marketplace installer allows attackers to upload malicious ZIP archives that can extract files to arbitrary locations on the filesystem. Attackers can overwri...
An SQL injection vulnerability in the Divido payment extension for OpenCart allows unauthenticated attackers to execute arbitrary SQL queries. This affects OpenCart installations with the Divido modul...
This path traversal vulnerability in OpenCart allows authenticated users with Log component modify privileges to delete arbitrary files on the server. It affects OpenCart installations from version 4....
OpenCart 4.1.0.4 has a stored XSS vulnerability in the blog editor where unsanitized input allows attackers to inject malicious JavaScript. This affects all OpenCart administrators and potentially cus...
This CVE describes HTML injection vulnerabilities in OpenCart's account registration endpoint that allow attackers to inject malicious HTML content into victim browsers. Attackers can exploit this by ...
This is a Cross-Site Scripting (XSS) vulnerability in OpenCart that allows attackers to execute malicious JavaScript in victims' browsers via crafted URLs to the /product/search endpoint. Attackers co...
This is a reflected Cross-Site Scripting (XSS) vulnerability in OpenCart's admin file manager that allows attackers to steal admin session tokens via malicious URLs. It affects OpenCart versions 4.0.0...
A race condition vulnerability exists in OpenCart's Single-Use Coupon Handler component, allowing attackers to potentially bypass coupon usage restrictions. This affects OpenCart installations up to v...