CVE-2025-9797

Name of the Vulnerable Software and Affected Versions expressCart versions prior to b31302f4e99c3293bd742c6d076a721e168118b0

Description A vulnerability exists in the Edit Product Page component of expressCart. The issue involves an injection flaw within an unknown function of the /admin/product/edit/ file. This manipulation can be initiated remotely, and the exploit has been publicly disclosed. Continuous delivery with rolling releases is used, and no specific version details for affected or updated releases are available.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.