Schlop

**Name of the Vulnerable Software and Affected Versions** OpenCart version 4.0.2.3 **Description** A flaw exists within OpenCart that allows for improper neutralization of special elements used in a template engine. This issue is related to the `Save` function within the `admin/controller/design/template.php` file. The attack can be initiated remotely. The vendor was contacted regarding this disclosure but did not provide a response. **Recommendations** Apply a fix to the `Save` function in the `admin/controller/design/template.php` file.