- Description
- A vulnerability, which was classified as critical, was found in CoinRemitter 0.0.1/0.0.2 on OpenCart. This affects an unknown part. The manipulation of the argument coin leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 0.0.3 is able to address this issue. It is recommended to upgrade the affected component.
- Source
- cna@vuldb.com
- NVD status
- Received
CVSS 4.0
- Type
- Secondary
- Base score
- 6.9
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- MEDIUM
CVSS 3.1
- Type
- Primary
- Base score
- 7.3
- Impact score
- 3.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
- Severity
- HIGH
CVSS 2.0
- Type
- Secondary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- cna@vuldb.com
- CWE-74
- Hype score
- Not currently trending
- CVE-2025-1117 a critical Vulnerability identified in V0.0.1 & 0.0.2 of the coinremitter plugin for Opencart, manipulating the 'coin' argument leads to SQL injection. #CVE #bugbountytips #Opencart #Sqli #research #wallet #coin #Api https://t.co/4BcDIrcK3U - @Lyght__7 - 9 Feb 2025 - 9 Impressions - 0 Retweets - 0 Likes - 0 Bookmarks - 2 Replies - 0 Quotes 
- ๐จ CVE-2025-1117 ๐ MEDIUM (6.9) ๐ข Unknown Vendor - CoinRemitter ๐๏ธ 0.0.1 ๐ https://t.co/Drkb4rcjXA ๐ https://t.co/DRuIA0IJvz ๐ https://t.co/RYYpVOuQXS ๐ https://t.co/rs19lCiCCu ๐ https://t.co/KjdlEGFZe5 #CyberCron #VulnAlert https://t.co/vkJbPTfti8 - @cybercronai - 8 Feb 2025 - 142 Impressions - 0 Retweets - 2 Likes - 0 Bookmarks - 0 Replies - 1 Quote 
- CVE-2025-1117 A vulnerability, which was classified as critical, was found in CoinRemitter 0.0.1/0.0.2 on OpenCart. This affects an unknown part. The manipulation of the argument coiโฆ https://t.co/NXeCZDO0iB - @CVEnew - 8 Feb 2025 - 779 Impressions - 0 Retweets - 0 Likes - 0 Bookmarks - 0 Replies - 0 Quotes