A Server-Side Template Injection (SSTI) vulnerability in the edit theme function of openCart project v4.0.2.3 allows attackers to execute arbitrary code via injecting a crafted payload.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/A3h1nt/CVEs/blob/main/OpenCart/Readme.md |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-07-17T00:00:00
Updated: 2024-08-02T04:33:11.608Z
Reserved: 2024-07-05T00:00:00
Link: CVE-2024-40420
Vulnrichment
Updated: 2024-07-17T18:44:50.012Z
NVD
Status : Awaiting Analysis
Published: 2024-07-17T19:15:11.363
Modified: 2024-08-01T13:57:24.680
Link: CVE-2024-40420
Redhat
No data.