Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Aridius XYZ News loadMore deserialization
Vulnerability Description
A vulnerability has been found in Aridius XYZ up to 20240927 on OpenCart and classified as critical. This vulnerability affects the function loadMore of the component News. The manipulation leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
可信数据的反序列化
Vulnerability Title
OpenCart Aridius 代码问题漏洞
Vulnerability Description
OpenCart Aridius是OpenCart公司的一个 OpenCart 扩展。 OpenCart Aridius XYZ 20240927及之前版本存在代码问题漏洞,该漏洞源于News组件loadMore函数的反序列化问题。
CVSS Information
N/A
Vulnerability Type
N/A