Security Advisory

CVE-2025-1749

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-28 13:43:25

Last updated 2025-02-28 14:11:59

Assigner INCIBE

State PUBLISHED

Description

HTML injection vulnerabilities in OpenCart versions prior to 4.1.0. These vulnerabilities could allow an attacker to modify the HTML of the victims browser by sending a malicious URL and modifying the parameter name in /account/voucher.

← Browse all CVEs View on cve.org ↗