OpenCart TMD Vendor System Blind SQL Injection Vulnerability

A blind SQL injection vulnerability has been identified in OpenCart TMD Vendor System version 3.x. This vulnerability allows unauthenticated attackers to inject SQL code through the product_id parameter, enabling them to extract database information. Exploitation of this vulnerability could lead to the enumeration of usernames, emails, and password reset codes from the oc_user table.

Impact

Exploitation of this vulnerability allows for blind SQL injection, where attackers can manipulate SQL queries and potentially access or modify database information.

Reproduction

The vulnerability can be reproduced by sending a request to 'index.php?route=vendor/allseller' with a crafted 'product_id' parameter that includes SQL injection payloads. The injection can be verified by observing the application's response, which will indicate whether the injection was successful.