Products
openCart
- 4.0.2.3
Source
cve@mitre.org
Tags
CVE-2024-40420 details
Published : July 17, 2024, 7:15 p.m.
Last Modified : July 17, 2024, 7:15 p.m.
Last Modified : July 17, 2024, 7:15 p.m.
Description
A Server-Side Template Injection (SSTI) vulnerability in the edit theme function of openCart project v4.0.2.3 allows attackers to execute arbitrary code via injecting a crafted payload.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://github.com/A3h1nt/CVEs/blob/main/OpenCart/Readme.md | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.