OpenCart 2.1.0.1 Cross Site Scripting

`Information  
--------------------  
Advisory by Netsparker  
Name: XSS Vulnerability in OpenCart  
Affected Software : OpenCart  
Affected Versions: v2.1.0.1 and possibly below  
Vendor Homepage : http://www.opencart.com  
Vulnerability Type : Cross-site Scripting  
Severity : Important  
Status : Fixed  
CVE-ID : CVE-2015-4671  
Netsparker Advisory Reference : NS-15-023  
  
Description  
--------------------  
By exploiting a Cross-site scripting vulnerability the attacker can hijack  
a logged in user’s session. This means that the malicious hacker can change  
the logged in user’s password and invalidate the session of the victim  
while the hacker maintains access. As seen from the XSS example in this  
article, if a web application is vulnerable to cross-site scripting and the  
administrator’s session is hijacked, the malicious hacker exploiting the  
vulnerability will have full admin privileges on that web application.  
  
Technical Details  
--------------------  
Proof of Concept URLs for XSS in OpenCart v2.1.0.1:  
  
/opencart/index.php?route=account/address/add  
(zone_id - POST)  
  
For more information on cross-site scripting vulnerabilities read the  
following article on Cross-site Scripting (XSS) -  
https://www.netsparker.com/web-vulnerability-scanner/vulnerability-security-checks-index/crosssite-scripting-xss/  
  
Advisory Timeline  
--------------------  
07/12/2015 - First Contact  
16/12/2015 - Vendor Fixed  
18/12/2015 - Advisory Released  
  
Solution  
--------------------  
https://github.com/opencart/opencart/commit/303fa88fe664ded4bf8753b997abd916f0a3c03f  
  
  
Credits & Authors  
--------------------  
These issues have been discovered by Ziyahan Albeniz while testing  
Netsparker Web Application Security Scanner -  
https://www.netsparker.com/web-vulnerability-scanner/  
  
About Netsparker  
--------------------  
Netsparker web application security scanners find and report security flaws  
and vulnerabilities such as SQL Injection and Cross-site Scripting (XSS) in  
all websites and web applications, regardless of the platform and  
technology they are built on. Netsparker scanning engine’s unique detection  
and exploitation techniques allow it to be dead accurate in reporting  
vulnerabilities. The Netsparker web application security scanner is  
available in two editions; Netsparker Desktop and Netsparker Cloud. Visit  
our website https://www.netsparker.com for more information.  
  
Onur Yılmaz - National General Manager  
  
Netsparker Web Application Security Scanner <https://www.netsparker.com>  
T: +90 (0)554 873 0482  
`