CVE-2025-0974 | MaxD Lightning Module 4.43 on OpenCart li_op/md deserialization

Posted by Angelo Barbosa | Feb 2, 2025 | CVE

A vulnerability, which was classified as critical, has been found in MaxD Lightning Module 4.43 on OpenCart. This issue affects some unknown processing. The manipulation of the argument li_op/md leads to deserialization.

The identification of this vulnerability is CVE-2025-0974. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-0974 | MaxD Lightning Module 4.43 on OpenCart li_op/md deserialization

Related Posts

CVE-2024-28254 | open-metadata OpenMetadata up to 1.2.3 validateExpression os command injection

CVE-2024-31583 | PyTorch up to 2.1.x interpreter.cpp use after free

CVE-2023-6840 | GitLab Enterprise Edition prior 16.6.7/16.7.5/16.8.2 Protected Branch access control (Issue 435500)

CVE-2022-48616 | Huawei AR6000 os command injection