all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Researcher Discloses OpenCart Vulnerability; Company Reacts Aggressively

Add to bookmarks
Nov. 27, 2023, 12:57 p.m. | Eswar

Cyber Security News cybersecuritynews.com

A security researcher who goes under the name “0xbro” discovered a Static code injection vulnerability in OpenCart, which allows the writing of arbitrary untrusted data on config.php and admin/config.php files that could result in remote code execution. This vulnerability was assigned CVE-2023-47444, and the severity was 8.8 (High). However, a responsible disclosure was made from […]


The post Researcher Discloses OpenCart Vulnerability; Company Reacts Aggressively appeared first on Cyber Security News.

admin code code execution code injection cve cyber security data disclosure files goes high injection name opencart php remote code remote code execution researcher responsible responsible disclosure result security security researcher severity under untrusted vulnerability writing

Visit resource

More from cybersecuritynews.com / Cyber Security News

Internal Communication Gaps Exposes Organizations to Cyber Attacks 57 minutes ago | cybersecuritynews.com
alignment attacks challenges ciso +24
AI Powered Deepfake Detector to Combact Deepfakes Threats 2 hours ago | cybersecuritynews.com
advanced ai-powered capabilities collaboration +17
10 Best Active Directory Management Tools 2024 2 hours ago | cybersecuritynews.com
accounts active directory cyber security data +21
PostgreSQL Security Flaws Let Attackers Execute Code 3 hours ago | cybersecuritynews.com
administration attackers authentication authentication bypass +28
NVIDIA ChatRTX for Windows Vulnerability Lets Attackers Escalate Privileges 5 hours ago | cybersecuritynews.com
access application attackers authorization +19
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories) 23 hours ago | cybersecuritynews.com
attack attacks attack vectors breaches +16
Russian Hackers Exploit Outlook Flaw to Hijack Numerous Email Accounts 1 day, 22 hours ago | cybersecuritynews.com
accounts agency apt28 bear +37
Android Bug Leaks DNS Traffic to Hackers While Switching VPN Servers 2 days, 5 hours ago | cybersecuritynews.com
android android 14 bug critical +21
ShadowSyndicate Hackers Exploit Aiohttp Vulnerability To Steal Sensitive Data 2 days, 21 hours ago | cybersecuritynews.com
access aiohttp vulnerability asynchronous attackers +25

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Head of Security Operations

@ Canonical Ltd. | Home based - Americas, EMEA
View on infosec-jobs.com

Security Specialist

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com

Senior Cyber Incident Response (Hybrid)

@ SmartDev | Cầu Giấy, Vietnam
View on infosec-jobs.com

Sr Security Engineer - Colombia

@ Nubank | Colombia, Bogota
View on infosec-jobs.com

Security Engineer, Investigations - i3

@ Meta | Menlo Park, CA | Washington, DC | Remote, US
View on infosec-jobs.com

Cyber Security Engineer

@ ASSYSTEM | Bridgwater, United Kingdom
View on infosec-jobs.com
View more jobs