{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2024-58341/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["high"],"_cs_tags":["cve-2024-58341","sql-injection","opencart"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eOpenCart Core 4.0.2.3 is susceptible to a SQL injection vulnerability that allows unauthenticated remote attackers to inject arbitrary SQL commands through the \u0026lsquo;search\u0026rsquo; parameter. The vulnerability, identified as CVE-2024-58341, allows attackers to craft malicious GET requests to the product search endpoint, potentially leading to the extraction of sensitive database information. The attack relies on the injection of SQL code within the \u0026lsquo;search\u0026rsquo; parameter, exploiting the lack of proper input…\u003c/p\u003e\n","date_modified":"2026-03-25T16:16:07Z","date_published":"2026-03-25T16:16:07Z","id":"/briefs/2026-03-opencart-sqli/","summary":"OpenCart Core 4.0.2.3 is vulnerable to SQL injection via the 'search' parameter, enabling unauthenticated attackers to manipulate database queries and extract sensitive information through boolean-based or time-based blind SQL injection.","title":"OpenCart Core SQL Injection Vulnerability (CVE-2024-58341)","url":"https://feed.craftedsignal.io/briefs/2026-03-opencart-sqli/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2024-58341","version":"https://jsonfeed.org/version/1.1"}