Opencart Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2024-36694 - Vulnerability Database

Opencart Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2024-36694

High

Reference: CVE-2024-36694

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-36694

Title: Opencart Improper Control of Generation of Code (Code Injection) Vulnerability

Overview:

OpenCart 4.0.2.3 is vulnerable to Server-Side Template Injection (SSTI) via the Theme Editor Function.