Analyzed
about 5 hours
ago.
based on code collected
about 10 hours
ago.
Major Versions
click and drag to zoom
Security Vulnerabilities for Version:
Severities:
Type
|
Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
|---|---|---|---|---|---|
| BDSA-2021-4783 | Medium | Feb 03, 2023 | OpenCart is vulnerable to SQL injection (SQLi). This allows a remote attacker to extract, modify, and delete information from the database associated w more... | ||
| BDSA-2021-3609 | High | Dec 01, 2021 | OpenCart is vulnerable to a session fixation issue due to how the `OCSESSID` cookie is not sufficiently validated and can be manipulated by users. An more... | ||
| BDSA-2020-3713 | Medium | Dec 10, 2020 | Opencart contains a cross-site request forgery (CSRF) vulnerability. An attacker could exploit this vulnerability in order to make changes to a victim' more... | ||
| BDSA-2018-2620 | Critical | Aug 07, 2018 | OpenCart is vulnerable to remote code execution (RCE), as an attacker can upload a malicious `.php` script to the server, and have it executed by acces more... | ||
| BDSA-2018-2613 | Medium | Aug 01, 2018 | OpenCart is vulnerable to directory traversal, meaning that an attacker could expose confidential data for downloading, by sending a crafted link to an more... | ||
| BDSA-2013-0090 | Low | Jun 27, 2022 | OpenCart contains a directory traversal vulnerability due to the insufficient sanitization of user-supplied input. An attacker with administrator privi more... |
