{"vulnerability": "CVE-2020-29471", "sightings": [{"uuid": "a8814aa5-aa4a-44eb-ae32-c056cfc097ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29471", "type": "seen", "source": "https://t.me/arpsyndicate/4832", "content": "#ExploitObserverAlert\n\nCVE-2020-29471\n\nDESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2020-29471. OpenCart 3.0.3.6 is affected by cross-site scripting (XSS) in the Profile Image. An admin can upload a profile image as a malicious code using JavaScript. Whenever anyone will see the profile picture, the code will execute and XSS will trigger.\n\nFIRST-EPSS: 0.000910000\nNVD-IS: 2.7\nNVD-ES: 1.7\nARPS-PRIORITY: 0.8643997", "creation_timestamp": "2024-04-24T22:22:34.000000Z"}]}