Description
DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2024-36694. Reason: This record is a duplicate of CVE-2024-36694. Notes: All CVE users should reference CVE-2024-36694 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage.
Published: 2024-07-17
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

References

No reference.

History

Wed, 18 Dec 2024 20:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-94
References
Metrics cvssV3_1

{'score': 8.0, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H'}

Wed, 18 Dec 2024 20:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:opencart:opencart:4.0.2.3:*:*:*:*:*:*:*
Vendors & Products Opencart
Opencart opencart
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 18 Dec 2024 19:45:00 +0000

Type Values Removed Values Added
Description A Server-Side Template Injection (SSTI) vulnerability in the edit theme function of openCart project v4.0.2.3 allows attackers to execute arbitrary code via injecting a crafted payload. DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2024-36694. Reason: This record is a duplicate of CVE-2024-36694. Notes: All CVE users should reference CVE-2024-36694 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage.

Subscriptions

No data.

cve-icon MITRE

Status: REJECTED

Assigner: mitre

Published:

Updated: 2024-12-18T19:39:52.454Z

Reserved: 2024-07-05T00:00:00.000Z

Link: CVE-2024-40420

cve-icon Vulnrichment

Updated:

cve-icon NVD

Status : Rejected

Published: 2024-07-17T19:15:11.363

Modified: 2024-12-18T20:15:22.773

Link: CVE-2024-40420

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses

No weakness.