CVE-2025-45892 Information
Jul 26, 2025
cve
Description
OpenCart version 4.1.0.4 is vulnerable to a Stored Cross-Site Scripting (XSS) attack via the blog editor. The vulnerability arises because input in the blog’s editor is not properly sanitized or escaped before being rendered. This allows attackers to inject malicious JavaScript code
Reference
https://packetstorm.news/files/id/202886 https://www.opencart.com
Related CNNVD
CNNVD-202507-3133 (Published: 2025-07-25)
Share on: