Cross-site Scripting Vulnerability in OpenCart Product Display by Ajinkya N
CVE-2024-51835
Currently unrated
What is CVE-2024-51835?
A Cross-site Scripting (XSS) vulnerability exists in the OpenCart Product Display plugin developed by Ajinkya N. This vulnerability allows attackers to inject malicious scripts into web pages that are displayed to users. If successfully exploited, this can lead to the execution of arbitrary scripts in victims' browsers. The issue specifically arises due to improper neutralization of user input during web page generation, thereby posing a significant risk to user data and confidentiality. The vulnerability affects versions from n/a through 1.0.