CVE-2020-29471

Cross-site Scripting in packagist/opencart/opencart

Identifier

CVE-2020-29471

Package Slug

packagist/opencart/opencart

Vulnerability

Cross-site Scripting

Description

OpenCart An admin can upload a profile image as a malicious code using JavaScript. Whenever anyone will see the profile picture, the code will execute and XSS will trigger.

Affected Versions

Version 3.0.3.6

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-01-01

source