Lucene search
CVE-2023-27638
An issue in tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop allows SQL injection via forged HTTP request with compromised tshirtecommerce_design_cart_id GET parameter
Show more
| Reporter | Title | Published | Views | Family All 4 |
|---|---|---|---|---|
 | Sql injection | 22 Mar 202313:15 | – | prion |
 | CVE-2023-27638 | 22 Mar 202300:00 | – | vulnrichment |
 | CVE-2023-27638 | 22 Mar 202313:15 | – | nvd |
 | CVE-2023-27638 | 22 Mar 202300:00 | – | cvelist |
Node
| Source | Link |
|---|---|
| friends-of-presta | www.friends-of-presta.github.io/security-advisories/module/2023/03/21/tshirtecommerce_cwe-89.html |
| codecanyon | www.codecanyon.net/item/prestashop-custom-product-designer/19202018 |
| tshirtecommerce | www.tshirtecommerce.com/ |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo22 Mar 2023 13:15Current
9.6High risk
Vulners AI Score9.6
CVSS39.8
EPSS0.00171
SSVC