{"uuid": "93aea42a-f692-44f2-9ae8-706151b8f70a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-36694", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2835", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-36694\n\ud83d\udd39 Description: OpenCart 4.0.2.3 is vulnerable to Server-Side Template Injection (SSTI) via the Theme Editor Function.\n\ud83d\udccf Published: 2024-12-18T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-23T20:35:17.819Z\n\ud83d\udd17 References:\n1. https://github.com/opencart/opencart/releases/tag/4.0.2.3\n2. https://github.com/A3h1nt/CVEs/blob/main/OpenCart/Readme.md\n3. https://github.com/opencart/opencart/issues/13863\n4. https://medium.com/@pawarit.sanguanpang/opencart-v4-0-2-3-server-side-template-injection-0b173a3bdcf9\n5. https://github.com/PawaritSanguanpang/CVEs/blob/main/OpenCart/CVE-2024-36694/README.md", "creation_timestamp": "2025-01-23T21:03:44.000000Z"}