29 matches found
CVE-2023-43983
Presto Changeo attributegrid up to 2.0.3 was discovered to contain a SQL injection vulnerability via the component disablejson.php...
EUVD-2023-48340
Malicious code in bioql PyPI...
EUVD-2023-48342
Malicious code in bioql PyPI...
EUVD-2023-48339
Malicious code in bioql PyPI...
CVE-2023-43980
Presto Changeo testsitecreator up to v1.1.1 was discovered to contain a SQL injection vulnerability via the component disablejson.php...
CVE-2023-43981
Presto Changeo testsitecreator up to 1.1.1 was discovered to contain a deserialization vulnerability via the component deleteexcludedfolder.php...
CVE-2023-43981
Presto Changeo testsitecreator up to 1.1.1 was discovered to contain a deserialization vulnerability via the component deleteexcludedfolder.php...
CVE-2023-43981
Presto Changeo testsitecreator up to 1.1.1 was discovered to contain a deserialization vulnerability via the component deleteexcludedfolder.php...
CVE-2023-43983
Presto Changeo attributegrid up to 2.0.3 was discovered to contain a SQL injection vulnerability via the component disablejson.php...
CVE-2023-43981
Presto Changeo testsitecreator up to 1.1.1 was discovered to contain a deserialization vulnerability via the component deleteexcludedfolder.php...
CVE-2023-43983
Presto Changeo attributegrid up to 2.0.3 was discovered to contain a SQL injection vulnerability via the component disablejson.php...
Sql injection
Presto Changeo attributegrid up to 2.0.3 was discovered to contain a SQL injection vulnerability via the component disablejson.php...
CVE-2023-43981
Presto Changeo testsitecreator (up to version 1.1.1) contains a deserialization vulnerability in the delete_excluded_folder.php component. The issue is rooted in unsafe deserialization within this PHP component, enabling arbitrary code execution or data tampering as described in the CVE entry. Th...
CVE-2023-43983
Presto Changeo attributegrid up to 2.0.3 was discovered to contain a SQL injection vulnerability via the component disablejson.php...
CVE-2023-43983
Presto Changeo attributegrid up to 2.0.3 was discovered to contain a SQL injection vulnerability via the component disablejson.php...
CVE-2023-43981
Presto Changeo testsitecreator up to 1.1.1 was discovered to contain a deserialization vulnerability via the component deleteexcludedfolder.php...
PrestaShop Code Issue Vulnerability
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, SMS alerts and product image scaling. A security vulnerability exists in PrestaShop, which stems from a deserialization vulnerability in the...
PrestaShop SQL Injection Vulnerability
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, SMS alerts, and product image scaling. A security vulnerability exists in PrestaShop, which stems from a SQL injection vulnerability in the disablejson.php...
CVE-2023-43983
Presto Changeo attributegrid up to version 2.0.3 contains a SQL injection vulnerability in the disable_json.php component. The issue, documented across multiple feeds (including Red Hat and CVE records), has a CVSS v3.1 base score of 9.8 (CRITICAL) with network attack vector, no user interaction,...
PT-2023-29058 · Presto Changeo · Presto Changeo Attributegrid
Name of the Vulnerable Software and Affected Versions: Presto Changeo attributegrid versions up to 2.0.3 Description: The issue is related to a SQL injection vulnerability via the component disable json.php. This vulnerability was discovered in Presto Changeo attributegrid. Recommendations: For...