CVSS: 9.0EPSS: 4%CPEs: 1EXPL: 1CVE-2023-47444
https://notcve.org/view.php?id=CVE-2023-47444
15 Nov 2023 — An issue discovered in OpenCart 4.0.0.0 to 4.0.2.3 allows authenticated backend users having common/security write privilege can write arbitrary untrusted data inside config.php and admin/config.php, resulting in remote code execution on the underlying server. Un problema descubierto en OpenCart 4.0.0.0 a 4.0.2.3 permite que los usuarios backend autenticados que tienen privilegios de escritura comunes/de seguridad puedan escribir datos arbitrarios que no sean de confianza dentro de config.php y admin/config... • https://0xbro.red/disclosures/disclosed-vulnerabilities/opencart-cve-2023-47444 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2315 – Path Traversal in OpenCart versions 4.0.0.0 to 4.0.2.2
https://notcve.org/view.php?id=CVE-2023-2315
26 Sep 2023 — Path Traversal in OpenCart versions 4.0.0.0 to 4.0.2.2 allows an authenticated user with access/modify privilege on the Log component to empty out arbitrary files on the server Path Traversal en las versiones 4.0.0.0 a 4.0.2.2 de OpenCart permite a un usuario autenticado con privilegios de acceso/modificación en el componente de Log vaciar archivos arbitrarios en el servidor • https://github.com/opencart/opencart/commit/0a8dd91e385f70e42795380009fd644224c1bc97 • CWE-20: Improper Input Validation CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 2CVE-2023-40834 – OpenCart CMS 4.0.2.2 Brute Force
https://notcve.org/view.php?id=CVE-2023-40834
06 Sep 2023 — OpenCart CMS v4.0.2.2 was discovered to lack a protective mechanism on its login page against excessive login attempts, allowing unauthenticated attackers to gain access to the application via a brute force attack to the password parameter. OpenCart v4.0.2.2 es vulnerable al Ataque de Fuerza bruta. OpenCart CMS version 4.0.2.2 suffers from a login brute forcing vulnerability. • https://packetstorm.news/files/id/174525 • CWE-307: Improper Restriction of Excessive Authentication Attempts •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 1CVE-2020-20491
https://notcve.org/view.php?id=CVE-2020-20491
20 Jun 2023 — SQL injection vulnerability in OpenCart v.2.2.00 thru 3.0.3.2 allows a remote attacker to execute arbitrary code via the Fba plugin function in upload/admin/index.php. • https://github.com/opencart/opencart/issues/7612 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2021-37823
https://notcve.org/view.php?id=CVE-2021-37823
03 Nov 2022 — OpenCart 3.0.3.7 allows users to obtain database information or read server files through SQL injection in the background. OpenCart 3.0.3.7 permite a los usuarios obtener información de la base de datos o leer archivos del servidor mediante inyección SQL en segundo plano. • https://medium.com/%40nowczj/sql-injection-exists-in-the-background-of-opencart-d41b5c58e99e • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 3CVE-2013-1891 – OpenCart 1.5.5.1 - 'FileManager.php' Directory Traversal Arbitrary File Access
https://notcve.org/view.php?id=CVE-2013-1891
24 Jun 2022 — In OpenCart 1.4.7 to 1.5.5.1, implemented anti-traversal code in filemanager.php is ineffective and can be bypassed. En OpenCart versiones 1.4.7 a 1.5.5.1, el código anti-traversal implementado en el archivo filemanager.php es ineficaz y puede ser evitado • https://www.exploit-db.com/exploits/24877 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-29470 – OpenCart 3.0.3.6 - 'subject' Stored Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2020-29470
29 Dec 2020 — OpenCart 3.0.3.6 is affected by cross-site scripting (XSS) in the Subject field of mail. This vulnerability can allow an attacker to inject the XSS payload in the Subject field of the mail and each time any user will open that mail of the website, the XSS triggers and the attacker can able to steal the cookie according to the crafted payload. OpenCart versión 3.0.3.6, está afectado por una vulnerabilidad de tipo cross-site scripting (XSS) en el campo Subject del correo. Esta vulnerabilidad puede permit... • https://www.exploit-db.com/exploits/49099 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-29471 – OpenCart 3.0.3.6 - 'Profile Image' Stored Cross-Site Scripting (Authenticated)
https://notcve.org/view.php?id=CVE-2020-29471
29 Dec 2020 — OpenCart 3.0.3.6 is affected by cross-site scripting (XSS) in the Profile Image. An admin can upload a profile image as a malicious code using JavaScript. Whenever anyone will see the profile picture, the code will execute and XSS will trigger. OpenCart versión 3.0.3.6, está afectado por una vulnerabilidad de tipo cross-site scripting (XSS) en la Imagen de Perfil. Un administrador puede cargar una imagen de perfil como un código malicioso usando JavaScript. • https://www.exploit-db.com/exploits/49098 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-28838
https://notcve.org/view.php?id=CVE-2020-28838
11 Dec 2020 — Cross Site Request Forgery (CSRF) in CART option in OpenCart Ltd. Opencart CMS 3.0.3.6 allows attacker to add cart items via Add to cart. Un vulnerabilidad de tipo Cross Site Request Forgery (CSRF) en la opción CART en OpenCart Ltd. Opencart CMS versión 3.0.3.6, permite a un atacante agregar artículos al carrito por medio de Add to cart • https://www.exploit-db.com/exploits/49228 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-13980
https://notcve.org/view.php?id=CVE-2020-13980
09 Jun 2020 — OpenCart 3.0.3.3 allows remote authenticated users to conduct XSS attacks via a crafted filename in the users' image upload section because of a lack of entity encoding. NOTE: this issue exists because of an incomplete fix for CVE-2020-10596. The vendor states "this is not a massive issue as you are still required to be logged into the admin. ** EN DISPUTA ** OpenCart versión 3.0.3.3, permite a usuarios autenticados remotos conducir ataques de tipo XSS por medio de un nombre de archivo diseñado en la secció... • https://github.com/opencart/opencart/issues/7974 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •