PT-2024-21159 · Unknown +1 · Prestashop +1

Name of the Vulnerable Software and Affected Versions: PrestaShop versions prior to 6.5.0 Description: The issue allows attackers to escalate privileges and obtain sensitive information via Send:: construct and importProducts:: addDataToDb methods. This is a SQL Injection vulnerability in...