Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MaxD Lightning Module deserialization
Vulnerability Description
A vulnerability was determined in MaxD Lightning Module 4.43/4.44 on OpenCart. This issue affects some unknown processing. Executing a manipulation of the argument li_op/md can lead to deserialization. The attack may be launched remotely. The attack requires a high level of complexity. The exploitability is assessed as difficult. The exploit has been publicly disclosed and may be utilized. Upgrading to version 4.45 is capable of addressing this issue. Upgrading the affected component is advised.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
可信数据的反序列化
Vulnerability Title
OpenCart Lightning 代码问题漏洞
Vulnerability Description
OpenCart Lightning是OpenCart公司的一个 OpenCart 扩展。 OpenCart Lightning 4.43版本存在代码问题漏洞,该漏洞源于参数li_op/md的反序列化问题。
CVSS Information
N/A
Vulnerability Type
N/A