10 matches found
EUVD-2023-49668
Malicious code in bioql PyPI...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
Sql injection
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
CVE-2023-45376
The CVE-2023-45376 entry concerns the PrestaShop add-on component Carousels Pack - Instagram, Products, Brands, Supplier (hicarouselspack) up to version 1.5.0 from HiPresta. A guest can exploit an SQL injection via HiCpProductGetter::getViewedProduct(), enabling unauthorized access/manipulation t...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
PT-2023-29533 · Prestashop +1 · Carousels Pack +1
Name of the Vulnerable Software and Affected Versions: Carousels Pack - Instagram, Products, Brands, Supplier hicarouselspack for PrestaShop versions up to 1.5.0 Description: A guest can perform SQL injection via the HiCpProductGetter::getViewedProduct function. This issue allows for potential da...