Home > E-Commerce, Remote Command Execution > OpenCart Two Vulnerabilities

OpenCart Two Vulnerabilities

April 30th, 2012

Application: OpenCart
Affected Version: version 1.5.2.1 and other versions.
Vendor’s URL: OpenCart
Bug Type: arbitrary code execution
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified. Restrict access to the download folder (e.g. via .htaccess)

E-Commerce, Remote Command Execution

Comments are closed.