CVE-2019-15081

Published August 15th, 2019

View on NVD ↗

CVSS v3

4.8

MEDIUM

CVSS v2

3.5

LOW

Affected

PROJECT

Description

OpenCart 3.x, when the attacker has login access to the admin panel, allows stored XSS within the Source/HTML editing feature of the Categories, Product, and Information pages.

nipunsomani/Opencart-3.x.x-Authenticated-Stored-XSS

GitHub