OpenCart 3.x Newsletter Custom Popup exists to contain a SQL injection vulnerability via the email parameter at index.php?route=extension/module/so_newletter_custom_popup/newsletter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
newsletter subscribe (popup + regular module) project newsletter subscribe (popup + regular module) 4.0 |