Lucene search
PRIOn knowledge basePRION:CVE-2022-31181HistoryAug 01, 2022 - 8:15 p.m.
Sql injection
2022-08-0120:15:00
PRIOn knowledge base
www.prio-n.com
9
PrestaShop is an Open Source e-commerce platform. In versions from 1.6.0.10 and before 1.7.8.7 PrestaShop is subject to an SQL injection vulnerability which can be chained to call PHP’s Eval function on attacker input. The problem is fixed in version 1.7.8.7. Users are advised to upgrade. Users unable to upgrade may delete the MySQL Smarty cache feature.
| CPE | Name | Operator | Version |
|---|---|---|---|
| prestashop | ge | 1.6.0.10 | |
| prestashop | lt | 1.7.8.7 |
Related
veracode
veracode
SQL Injection
2022-07-25 19:23:57
SQL Injection
2022-08-01 14:56:25
osv
osv
CVE-2022-31181
2022-08-01 20:15:08
PrestaShop eval injection possible if shop vulnerable to SQL injection
2022-07-29 22:27:27
github
github
PrestaShop eval injection possible if shop vulnerable to SQL injection
2022-07-29 22:27:27
cve
cve
CVE-2022-31181
2022-08-01 20:15:08
CVE-2022-36408
2022-07-22 22:15:08
cvelist
cvelist
CVE-2022-31181 Remote code execution in prestashop
2022-08-01 19:30:16
nvd
nvd
CVE-2022-31181
2022-08-01 20:15:08
CVE-2022-36408
2022-07-22 22:15:08
attackerkb
attackerkb
CVE-2022-36408
2022-07-22 00:00:00