CVE-2018-1000640

Name of the Vulnerable Software and Affected Versions OpenCart-Overclocked version <=1.11.1

Description The issue concerns a Cross Site Scripting (XSS) vulnerability. It occurs when user input is entered unsanitised within a JS function in the template, potentially resulting in unauthorised actions, access to data, stealing of session information, and denial of service. This can be exploited via malicious input passed in the GET parameter. An attacker needs to coerce a user into visiting a link with the XSS payload to properly exploit it against a victim. The vulnerability is due to the OpenCart Overclocked OpenBay template overly trusting user-controlled input, lacking sufficient sanitisation, and allowing an attacker to execute JavaScript code in the context of a victim’s browser.

Recommendations For OpenCart-Overclocked version <=1.11.1, as a temporary workaround, consider disabling the use of the token variable in the affected JavaScript function until a patch is available. Restrict access to the OpenBay template to minimize the risk of exploitation. Avoid using the token parameter in the affected GET request until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.