| 2024-04-01 | OpenCart Core 'search' - Blind SQLi | Published |
| 2022-10-17 | OpenCart v3.x So Newsletter Custom Popup Module - Blind SQL Injection | Published |
| 2022-10-02 | JCart For OpenCart 3.0.3.19 Cross Site Scripting | Published |
| 2022-06-28 | OpenCart v3.x So Filter Shop By - Blind SQL Injection | Published |
| 2022-05-17 | OpenCart So Listing Tabs 2.2.0 Unsafe Deserialization | Published |
| 2020-12-10 | OpenCart 3.0.3.6 Cross Site Request Forgery | Published |
| 2020-11-13 | OpenCart Theme Journal 3.1.0 Sensitive Data Exposure | Published |
| 2020-06-02 | OpenCart 3.0.3.2 Stored Cross Site Scripting Authenticated | Published |
| 2019-09-12 | Opencart 2.3.0.2 Pre-Auth Remote Command Execution | Published |
| 2019-09-03 | Opencart 3.x Cross Site Scripting | Published |
| 2019-08-09 | Opencart 2.3.0.2 Insecure OCMod Generation Remote Command Execution | Published |
| 2019-05-30 | Opencart 3.0.3.2 extension/feed/google_base Denial of Service PoC | Published |
| 2019-03-11 | OpenCart Price Comparison Store Modules 3.x Open Redirection | Published |
| 2018-06-21 | Opencart 3.0.2.0 google_sitemap Remote Denial Of Service | Published |
| 2018-05-30 | Joomla Component jCart for OpenCart 2.3.0.2 Cross-Site Request Forgery | Published |
| 2017-03-20 | Joomla jCart For OpenCart 2.0 SQL Injection | Published |
| 2016-04-12 | OpenCart 2.2.0.0 Remote PHP Code Execution | Published |
| 2015-11-08 | OpenCart 2.0.3.1 Cross Site Request Forgery | Published |
| 2014-07-15 | OpenCart <= 1.5.6.4 cart.php PHP Object Injection Vulnerability | Published |
| 2012-06-26 | OpenCart CMS Cross Site Scripting | Published |
| 2012-04-15 | OpenCart 1.5.2.1 LFI / Shell Upload / Response Splitting | Published |
| 2009-05-19 | Opencart 1.1.8 route Local File Inclusion Vulnerability | Published |
| 2009-03-21 | OpenCart Order By Blind SQL Injection | Published |
| 2009-03-21 | OpenCart Order By Blind SQL Injection | Published |