CVE-2025-1117

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions CoinRemitter versions 0.0.1 through 0.0.2

Description A critical issue was found in CoinRemitter on OpenCart, affecting an unknown part. The manipulation of the coin argument leads to SQL injection. It is possible to initiate the attack remotely. The estimated number of potentially affected devices worldwide is not available.

Recommendations For CoinRemitter versions 0.0.1 through 0.0.2, upgrade to version 0.0.3 to address this issue. As a temporary workaround, consider restricting the use of the coin argument until the upgrade is applied.

Exploit

Fix

Special Elements Injection

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-89

Related Identifiers

CVE-2025-1117

Affected Products

Coinremitter

Opencart

CVE-2025-1117

Weakness Enumeration

Related Identifiers

Affected Products

References · 13