https://feed.craftedsignal.io/tags/cve-2024-58341/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioWed, 25 Mar 2026 16:16:07 +0000https://feed.craftedsignal.io/briefs/2026-03-opencart-sqli/Wed, 25 Mar 2026 16:16:07 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-opencart-sqli/OpenCart Core 4.0.2.3 is vulnerable to SQL injection via the 'search' parameter, enabling unauthenticated attackers to manipulate database queries and extract sensitive information through boolean-based or time-based blind SQL injection.OpenCart Core 4.0.2.3 is susceptible to a SQL injection vulnerability that allows unauthenticated remote attackers to inject arbitrary SQL commands through the ‘search’ parameter. The vulnerability, identified as CVE-2024-58341, allows attackers to craft malicious GET requests to the product search endpoint, potentially leading to the extraction of sensitive database information. The attack relies on the injection of SQL code within the ‘search’ parameter, exploiting the lack of proper input…

]]>highadvisorycve-2024-58341sql-injectionopencart