Lucene search
HistoryJun 19, 2024 - 8:15 p.m.
CVE-2024-34993
sql injection
bulk export
google shopping
prestashop
cve-2024-34993
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
EPSS
0
Percentile
9.0%
In the module βBulk Export products to Google Merchant-Google Shoppingβ (bagoogleshopping) up to version 1.0.26 from Buy Addons for PrestaShop, a guest can perform SQL injection via`GenerateCategories::renderCategories().
Related
cvelist
cvelist
CVE-2024-34993
2024-06-19 00:00:00
cve
cve
CVE-2024-34993
2024-06-19 20:15:11
vulnrichment
vulnrichment
CVE-2024-34993
2024-06-19 00:00:00
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-34993