OpenCart 188.8.131.52 allows remote authenticated users to conduct XSS attacks via a crafted filename in the users’ image upload section. What version of OpenCart are you reporting this for?
Opencart 184.108.40.206 Describe the bug
Server / Test environment (please complete the following information):
Kali Linux 4.19.0
PHP version: 7.1.32
Apache version: 2.4.41
Browser(s) tested with: Mozilla Firefox Latest Build