CVE-2025-0579
Published: 20 January 2025
Description
A vulnerability was found in Shiprocket Module 3/4 on OpenCart. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php?route=extension/shiprocket/module/restapi of the component REST API Module. The manipulation of the argument x-username leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Security Summary
CVE-2025-0579 is a SQL injection vulnerability affecting Shiprocket Module versions 3 and 4 on OpenCart. The issue resides in an unknown functionality of the REST API Module, specifically the file /index.php?route=extension/shiprocket/module/restapi, where manipulation of the x-username argument triggers the injection. It carries a CVSS v3.1 base score of 7.3 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L) and maps to CWEs 74 (Improper Neutralization of Special Elements used in an SQL Command) and 89 (SQL Injection).
Remote attackers require no privileges, authentication, or user interaction to exploit this vulnerability with low attack complexity. Successful exploitation enables limited impacts on confidentiality, integrity, and availability, allowing potential unauthorized access, modification, or disruption of database contents via injected SQL payloads.
VulDB advisories indicate the vendor was contacted early regarding the disclosure but provided no response. No patches or official mitigations are referenced, and the exploit has been publicly disclosed, including details available via a GitHub Gist. Security practitioners should monitor for updates and consider restricting access to the affected endpoint.
Details
- CWE(s)