Arbitrary SQL Command Execution in OpenCart's Amazon Order Tracking Function

Arbitrary SQL Command Execution in OpenCart's Amazon Order Tracking Function

CVE-2016-10509 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in the updateAmazonOrderTracking function in upload/admin/model/openbay/amazon.php in OpenCart before version 2.3.0.0 allows remote authenticated administrators to execute arbitrary SQL commands via a carrier (aka courier_id) parameter to openbay.php.

Learn more about our Web Application Penetration Testing UK.