Opencart Luki w zabezpieczeniach

Oś czasu

Wersja

4.0.2.23
3.0.03
3.0.13
3.0.23
4.0.2.02

Przeciwdziałanie

Official Fix4
Temporary Fix0
Workaround0
Unavailable1
Not Defined20

Wykorzystywanie

High3
Functional0
Proof-of-Concept2
Unproven0
Not Defined20

Wektor dostępu

Not Defined0
Physical0
Local0
Adjacent1
Network24

Uwierzytelnianie

Not Defined0
High4
Low10
None11

Interakcja z użytkownikiem

Not Defined0
Required8
None17

C3BM Index

Ostatni rok

CVSSv3 Base

≤10
≤20
≤31
≤42
≤55
≤65
≤77
≤85
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤42
≤56
≤64
≤78
≤84
≤90
≤100

VulDB

≤10
≤20
≤32
≤43
≤57
≤65
≤76
≤82
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤53
≤61
≤73
≤83
≤94
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤91
≤100

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k6
<2k15
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj dzisiaj

<1k23
<2k2
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

Affected Versions (28): 0.7.7, 1.1.8, 1.3.2, 1.4, 1.4.9.3, 1.5.5, 1.5.5.1, 1.11, 1.11.1, 2.0, 2.1, 2.1.0.1, 2.2, 2.3.0.2, 3, 3.0, 3.0.1, 3.0.2, 3.0.3, 3.0.3.1, 3.0.3.2, 3.0.3.3, 3.0.3.6, 3.0.3.7, 4.0.2, 4.0.2.1, 4.0.2.2, 4.0.2.3

Typ oprogramowania: E-Commerce Management Software

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2023-11-167.57.5OpenCart config.php privilege escalation$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2023-47444
2023-09-277.77.6OpenCart Log directory traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-2315
2023-09-126.46.4OpenCart information disclosure$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-40834
2023-06-206.76.7OpenCart Fba Plugin index.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-20491
2022-11-043.83.8OpenCart sql injection$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2021-37823
2022-10-138.07.9OpenCart Newsletter Custom Popup sql injection$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2022-41403
2022-06-256.05.9OpenCart filemanager.php directory traversal$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2013-1891
2020-12-302.42.3OpenCart Profile Picture cross site scripting$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2020-29471
2020-12-303.53.3OpenCart Mail cross site scripting$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2020-29470
2020-06-094.54.5OpenCart Incomplete Fix CVE-2020-10596 cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-13980

15 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 15 results.

PoprzedniPrzeglądKolejny

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!