CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-20491

SQL injection vulnerability in OpenCart v.2.2.00 thru 3.0.3.2 allows a remote attacker to execute arbitrary code via the Fba plugin function in upload/admin/index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.6%

CVSS Severity

CVSS v3 Score 7.2

References

Products affected by CVE-2020-20491

Opencart » Opencart » Version: 2.2.0.0

cpe:2.3:a:opencart:opencart:2.2.0.0
Opencart » Opencart » Version: 2.3.0.0

cpe:2.3:a:opencart:opencart:2.3.0.0
Opencart » Opencart » Version: 2.3.0.1

cpe:2.3:a:opencart:opencart:2.3.0.1
Opencart » Opencart » Version: 2.3.0.2

cpe:2.3:a:opencart:opencart:2.3.0.2
Opencart » Opencart » Version: 3.0.0.0

cpe:2.3:a:opencart:opencart:3.0.0.0
Opencart » Opencart » Version: 3.0.0.2

cpe:2.3:a:opencart:opencart:3.0.0.2
Opencart » Opencart » Version: 3.0.1.0

cpe:2.3:a:opencart:opencart:3.0.1.0
Opencart » Opencart » Version: 3.0.1.1

cpe:2.3:a:opencart:opencart:3.0.1.1
Opencart » Opencart » Version: 3.0.1.2

cpe:2.3:a:opencart:opencart:3.0.1.2
Opencart » Opencart » Version: 3.0.2.0

cpe:2.3:a:opencart:opencart:3.0.2.0
Opencart » Opencart » Version: 3.0.3.0

cpe:2.3:a:opencart:opencart:3.0.3.0
Opencart » Opencart » Version: 3.0.3.1

cpe:2.3:a:opencart:opencart:3.0.3.1
Opencart » Opencart » Version: 3.0.3.2

cpe:2.3:a:opencart:opencart:3.0.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-20491

Products

Pricing

Contact Us