Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenCart version 4.1.0.4 is vulnerable to a Stored Cross-Site Scripting (XSS) attack via SVG file uploads used in blog posts. The vulnerability arises because SVG files uploaded through the media manager are not properly sanitized. Attackers can craft a malicious SVG file containing embedded JavaScript
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenCart 安全漏洞
Vulnerability Description
OpenCart是中国OpenCart团队的一套开源的电子商务系统。该系统提供产品评论、产品评分、产品添加等模块。 OpenCart 4.1.0.4版本存在安全漏洞,该漏洞源于SVG文件未经验证,可能导致存储型跨站脚本。
CVSS Information
N/A
Vulnerability Type
N/A