CVE-2024-58341
OpenCart Core 4.0.2.3 contains a SQL injection vulnerability in the product search endpoint, exploitable by unauthenticated attackers via the query parameter 'search'. Attackers can submit crafted GET requests to perform boolean-based blind or time-based blind SQL injection to extract sensitive d...