Lucene search
+L

4 matches found

euvd
euvd
added 2026/03/25 6:31 p.m.5 views

EUVD-2024-55504

OpenCart Core 4.0.2.3 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'search' parameter. Attackers can send GET requests to the product search endpoint with malicious 'search' values to extract sensitiv...

8.8CVSS6AI score0.00338EPSS
Exploits1References5
cvelist
cvelist
added 2026/03/25 4:4 p.m.31 views

CVE-2024-58341 OpenCart Core 4.0.2.3 SQL Injection via search Parameter

OpenCart Core 4.0.2.3 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'search' parameter. Attackers can send GET requests to the product search endpoint with malicious 'search' values to extract sensitiv...

8.8CVSS0.00338EPSS
Exploits1References4
osv
osv
added 2026/03/25 4:4 p.m.2 views

CVE-2024-58341 OpenCart Core 4.0.2.3 SQL Injection via search Parameter

OpenCart Core 4.0.2.3 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'search' parameter. Attackers can send GET requests to the product search endpoint with malicious 'search' values to extract sensitiv...

8.8CVSS6.1AI score0.00338EPSS
Exploits1References6
ptsecurity
ptsecurity
added 2026/03/25 12:0 a.m.9 views

PT-2026-27786

Name of the Vulnerable Software and Affected Versions OpenCart Core version 4.0.2.3 Description The software contains a SQL injection flaw that allows unauthenticated attackers to manipulate database queries. Attackers can inject SQL code through the search parameter. This is achieved by sending...

8.8CVSS6AI score0.00338EPSS
Exploits1References7
Rows per page
Query Builder