CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-40834

OpenCart CMS v4.0.2.2 was discovered to lack a protective mechanism on its login page against excessive login attempts, allowing unauthenticated attackers to gain access to the application via a brute force attack to the password parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.9%

CVSS Severity

CVSS v3 Score 9.8

References

https://packetstormsecurity.com/files/174525/OpenCart-CMS-4.0.2.2-Brute-Force.html
https://www.opencart.com/
https://packetstormsecurity.com/files/174525/OpenCart-CMS-4.0.2.2-Brute-Force.html
https://www.opencart.com/

Products affected by CVE-2023-40834

Opencart » Opencart » Version: 4.0.2.2

cpe:2.3:a:opencart:opencart:4.0.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-40834

Products

Pricing

Contact Us