Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Link | Providers |
---|---|
https://packetstorm.news/files/id/202886 |
![]() ![]() |
https://www.opencart.com |
![]() ![]() |
Thu, 07 Aug 2025 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:opencart:opencart:*:*:*:*:*:*:*:* |
Thu, 07 Aug 2025 01:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:opencart:opencart:4.1.0.4:*:*:*:*:*:*:* |
Mon, 28 Jul 2025 13:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Opencart
Opencart opencart |
|
Vendors & Products |
Opencart
Opencart opencart |
Fri, 25 Jul 2025 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-79 | |
Metrics |
cvssV3_1
|
Fri, 25 Jul 2025 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | OpenCart version 4.1.0.4 is vulnerable to a Stored Cross-Site Scripting (XSS) attack via the blog editor. The vulnerability arises because input in the blog's editor is not properly sanitized or escaped before being rendered. This allows attackers to inject malicious JavaScript code | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-07-25T20:31:43.029Z
Reserved: 2025-04-22T00:00:00.000Z
Link: CVE-2025-45892

Updated: 2025-07-25T20:31:35.608Z

Status : Analyzed
Published: 2025-07-25T17:15:32.350
Modified: 2025-08-07T14:19:07.903
Link: CVE-2025-45892

No data.

Updated: 2025-07-28T12:45:53Z