Description
Cross-site scripting (XSS) vulnerability in OpenCart before 2.1.0.2 allows remote attackers to inject arbitrary web script or HTML via the zone_id parameter to index.php.
Remediation
References
Related Vulnerabilities
EspoCRM Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-46736)
WordPress Plugin LearnPress-WordPress LMS Security Bypass (4.1.4.1)
WordPress Plugin Video.js-HTML5 Video Player for Wordpress Cross-Site Scripting (3.2.3)
SharePoint CVE-2023-23395 Vulnerability (CVE-2023-23395)
WordPress Plugin Widget Logic Cross-Site Request Forgery (5.10.2)