← Back to CVEs
CVE-2024-21519
MEDIUM6.6
Description
This affects versions of the package opencart/opencart from 4.0.0.0. An Arbitrary File Creation issue was identified via the database restoration functionality. By injecting PHP code into the database, an attacker with admin privileges can create a backup file with an arbitrary filename (including the extension), within /system/storage/backup. **Note:** It is less likely for the created file to be available within the web root, as part of the security recommendations for the application suggest moving the storage path outside of the web root.
CVE Details
CVSS v3.1 Score6.6
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityHIGH
Privileges RequiredHIGH
User InteractionNONE
Published6/22/2024
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
opencart:opencart
Weaknesses (CWE)
CWE-20
References
https://github.com/opencart/opencart/blob/4.0.2.3/upload/admin/controller/tool/upload.php%23L353(report@snyk.io)
https://security.snyk.io/vuln/SNYK-PHP-OPENCARTOPENCART-7266579(report@snyk.io)
https://github.com/opencart/opencart/blob/4.0.2.3/upload/admin/controller/tool/upload.php%23L353(af854a3a-2127-422b-91ae-364da2661108)
https://security.snyk.io/vuln/SNYK-PHP-OPENCARTOPENCART-7266579(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.