Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2025-1747 - Vulnerability Database
Opencart

Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2025-1747

Medium
Reference: CVE-2025-1747
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-1747
Title: Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify the HTML of the victim39s browser by sending a malicious URL andmodifying the parameter name in /account/login.