3 matches found
SQL Injection
Overview opencart/opencart is a shopping cart system Affected versions of this package are vulnerable to SQL Injection via the search parameter. An attacker can manipulate database queries and extract sensitive information by injecting malicious SQL code through crafted GET requests to the produc...
PT-2026-27786
Name of the Vulnerable Software and Affected Versions OpenCart Core version 4.0.2.3 Description The software contains a SQL injection flaw that allows unauthenticated attackers to manipulate database queries. Attackers can inject SQL code through the search parameter. This is achieved by sending...
CVE-2024-2146
A vulnerability was found in SourceCodester Online Mobile Management Store 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /?p=products. The manipulation of the argument search leads to cross site scripting. The attack can be launch...