Back to Codebase

Vulnerability Analysis Report

OpenCart Core v1.5.5.1

Scan ID: SCAN-OPENCART-CORE-BthlqK • Hash: d240e3d3

Severity Score
High
Total Findings
5
Engine Version
ECOMGUARD-HYBRID-AST-1.5
Scan Duration
0.554s

Vulnerability Details

L288

Potential SQL Injection in category.php

CWE-89
File Location: upload/admin/model/catalog/category.php:288
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $query = $this->db->query("SELECT COUNT(*) AS total FROM " . DB_PREFIX . "category");
+ $this->db->query("SELECT ... WHERE field = '" . $this->db->escape($variable) . "'");
L170

Potential SQL Injection in option.php

CWE-89
File Location: upload/admin/model/catalog/option.php:170
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $query = $this->db->query("SELECT COUNT(*) AS total FROM `" . DB_PREFIX . "option`");
+ $this->db->query("SELECT ... WHERE field = '" . $this->db->escape($variable) . "'");
L68

Potential SQL Injection in review.php

CWE-89
File Location: upload/admin/model/catalog/review.php:68
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $query = $this->db->query("SELECT COUNT(*) AS total FROM " . DB_PREFIX . "review");
+ $this->db->query("SELECT ... WHERE field = '" . $this->db->escape($variable) . "'");
L74

Potential SQL Injection in review.php

CWE-89
File Location: upload/admin/model/catalog/review.php:74
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $query = $this->db->query("SELECT COUNT(*) AS total FROM " . DB_PREFIX . "review WHERE status = '0'");
+ $this->db->query("SELECT ... WHERE field = '" . $this->db->escape($variable) . "'");
L82

Potential SQL Injection in layout.php

CWE-89
File Location: upload/admin/model/design/layout.php:82
Security Score:
94 / 100
Confirmed Issue

Rule Engine Warning

Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.

Heuristics Diff
- $query = $this->db->query("SELECT COUNT(*) AS total FROM " . DB_PREFIX . "layout");
+ $this->db->query("SELECT ... WHERE field = '" . $this->db->escape($variable) . "'");