CVE-2024-25845

In the module "CD Custom Fields 4 Orders" cdcustomfields4orders = 1.0.0 from Cleanpresta.com for PrestaShop, a guest can perform SQL injection in affected versions...

Sql injection

In the module "CD Custom Fields 4 Orders" cdcustomfields4orders = 1.0.0 from Cleanpresta.com for PrestaShop, a guest can perform SQL injection in affected versions...

CVE-2024-25845

In the module "CD Custom Fields 4 Orders" cdcustomfields4orders = 1.0.0 from Cleanpresta.com for PrestaShop, a guest can perform SQL injection in affected versions...

CVE-2024-25845

CVE-2024-25845 applies to the PrestaShop module CD Custom Fields 4 Orders (cdcustomfields4orders) version 1.0.0 and earlier. A guest can perform SQL injection in affected versions, exposing confidentiality, integrity, and availability (CVSS v3.1: 9.8, network access, no user interaction). There a...

PT-2024-21157 · Unknown · Cd Custom Fields 4 Orders

Name of the Vulnerable Software and Affected Versions: CD Custom Fields 4 Orders version 1.0.0 and earlier Description: A SQL injection issue exists, allowing a guest to perform malicious actions. Recommendations: For versions 1.0.0 and earlier, update to a version later than 1.0.0 to resolve the...