7 matches found
CVE-2024-24308
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...
CVE-2024-24308
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...
CVE-2024-24308
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...
Sql injection
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...
CVE-2024-24308
CVE-2024-24308 describes an SQL Injection in the Boostmyshopagent module for Prestashop, affecting versions 1.1.9 and earlier. The vulnerability allows a remote attacker to escalate privileges and exfiltrate sensitive data through vulnerable PHP files: changeOrderCarrier.php, relayPoint.php, and ...
CVE-2024-24308
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...
CVE-2024-24308
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...