Security Vulnerability Fix: Puny-Code, 0-Click Account Takeover

Security Vulnerability Fix: Puny-Code, 0-Click Account Takeover
Security Notification – OpenCart Vulnerability Fix
A public article has revealed a method for unauthorized access to administrator or user accounts.
During our review of the OpenCart platform, we identified that it is vulnerable to this type of attack.
To address this issue, we have developed a patch that fixes the security vulnerability within the platform.

Security Issue Details
- Name: Puny-Code, 0-Click Account Takeover
- Severity: Critical (9.1)
- Weakness: Improper Authentication – Generic
- More Information: https://blog.voorivex.team/puny-code-0-click-account-takeover
- Video Explanation: https://www.youtube.com/watch?v=Cj1sOFHDClM

Note:
This security issue has already been reported to the OpenCart team. However, due to the urgency and critical nature of the vulnerability, we have created an extension that provides an immediate fix.




Price
$60.00
  • Developed by OpenCart Partner
  • 1 Months Free Support
  • Documentation Included
Rating
Compatibility
4.x.x.x, 4.0.0.0, 4.0.1.0, 4.0.1.1, 4.0.2.0, 4.0.2.1, 4.0.2.2, 4.0.2.3, 4.1.0.0, 4.1.0.1, 4.1.0.2, 4.1.0.3, 2.0.0.0, 2.0.1.0, 2.0.1.1, 2.0.2.0, 2.0.3.1, 2.1.0.1, 2.1.0.2, 2.2.0.0, 2.3.0.0, 2.3.0.1, 2.3.0.2, 3.0.0.0, 3.0.1.0, 3.0.1.1, 3.0.1.2, 3.0.1.3, 3.0.2.0, 3.0.3.0, 3.0.3.1, 3.0.3.2, 3.0.3.3, 3.0.3.5, 3.0.3.6, 3.0.3.7, 3.0.3.8, 3.x.x.x, 3.0.3.9, 3.0.4.0, 3.0.4.1
Last Update
30 Jun 2025
Created
17 Jun 2025
0 Sales
0 Comments
Share
faca5
faca5
Member since: 14 Nov 2012

View all extensions Get Support