The Skyoftech So Listing Tabs module 2.2.0 for OpenCart allows a remote attacker to inject a serialized PHP object via the setting parameter, potentially resulting in the ability to write to files on the server, cause DoS, and achieve remote code execution because of deserialization of untrusted data.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-05-17T15:55:07
Updated: 2024-08-03T03:59:23.638Z
Reserved: 2022-01-28T00:00:00
Link: CVE-2022-24108
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-05-17T16:15:09.117
Modified: 2024-11-21T06:49:49.213
Link: CVE-2022-24108
Redhat
No data.