Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.11 views

CVE-2020-10596

OpenCart 3.0.3.2 allows remote authenticated users to conduct XSS attacks via a crafted filename in the users' image upload section...

5.4CVSS5.6AI score0.02671EPSS
Exploits4References1
Github Security Blog
Github Security Blog
added 2022/05/24 5:19 p.m.24 views

OpenCart Cross-site Scripting

OpenCart 3.0.3.3 allows remote authenticated users to conduct XSS attacks via a crafted filename in the users' image upload section because of a lack of entity encoding. NOTE: this issue exists because of an incomplete fix for CVE-2020-10596. The vendor states "this is not a massive issue as you...

4.8CVSS6AI score0.00659EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/05/24 5:19 p.m.24 views

GHSA-P9QW-FH38-X37F OpenCart Cross-site Scripting

OpenCart 3.0.3.3 allows remote authenticated users to conduct XSS attacks via a crafted filename in the users' image upload section because of a lack of entity encoding. NOTE: this issue exists because of an incomplete fix for CVE-2020-10596. The vendor states "this is not a massive issue as you...

4.8CVSS4.8AI score0.00659EPSS
Exploits1References4
0day.today
0day.today
added 2020/06/02 12:0 a.m.65 views

OpenCart 3.0.3.2 - Stored Cross Site Scripting (Authenticated) Vulnerability

Exploit for php platform in category web applications Exploit Title: OpenCart 3.0.3.2 - Stored Cross Site Scripting Authenticated Exploit Author: Kailash Bohara Vendor Homepage: https://www.opencart.com Software Link: https://www.opencart.com/index.php?route=cms/download Version: OpenCart...

3.5CVSS5.3AI score0.02671EPSS
Exploits4
CVE
CVE
added 2020/03/17 2:42 p.m.164 views

CVE-2020-10596

OpenCart CVE-2020-10596 is described as a cross-site scripting issue in OpenCart 3.0.3.2 where remote authenticated users can inject XSS via a crafted filename in the image upload section. Connected sources reiterate the same class of vulnerability and note that the issue arises from inadequate e...

5.4CVSS4.5AI score0.02671EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder