Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2025-1747 - Vulnerability Database

Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2025-1747

Medium
Reference: CVE-2025-1747
Title: Opencart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify the HTML of the victim39s browser by sending a malicious URL andmodifying the parameter name in /account/login.