Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2019-15081 - Vulnerability Database
Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2019-15081
Medium
Reference:
CVE-2019-15081
Title:
Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:
OpenCart 3.x when the attacker has login access to the admin panel allows stored XSS within the Source/HTML editing feature of the Categories Product and Information pages.