Lucene search
+L

6 matches found

Check Point Advisories
Check Point Advisories
added 2021/01/03 12:0 a.m.114 views

Arbitrary Code Injection Over HTTP Traffic (CVE-2020-21176; CVE-2020-25042; CVE-2020-26248; CVE-2020-26712; CVE-2020-28994; CVE-2020-29284; CVE-2020-6308; CVE-2021-25912)

Arbitrary Code Injections Over HTTP Traffic...

10CVSS1AI score0.61736EPSS
Exploits15
Packet Storm
Packet Storm
added 2020/12/16 12:0 a.m.251 views

PrestaShop ProductComments 4.2.0 SQL Injection

Exploit Title: PrestaShop ProductComments 4.2.0 - 'idproducts' Time Based Blind SQL Injection Date: 2020-12-15 Exploit Author: Frederic ADAM Author contact: [email protected] Vendor Homepage: https://www.prestashop.com Software Link: https://github.com/PrestaShop/productcomments Version: 4.2.0...

6.4CVSS0.6AI score0.12388EPSS
Exploits3
Exploit DB
Exploit DB
added 2020/12/16 12:0 a.m.251 views

PrestaShop ProductComments 4.2.0 - 'id_products' Time Based Blind SQL Injection

​ Exploit Title: PrestaShop ProductComments 4.2.0 - 'idproducts' Time Based Blind SQL Injection Date: 2020-12-15 Exploit Author: Frederic ADAM Author contact: [email protected] Vendor Homepage: https://www.prestashop.com Software Link: https://github.com/PrestaShop/productcomments Version: 4.2.0...

8.2CVSS7.4AI score0.12388EPSS
Exploits3
Circl
Circl
added 2020/12/04 12:26 a.m.7 views

CVE-2020-26248

creationtimestamp| type| source ---|---|--- 2020-12-04 00:26:26+00:00| seen| https://t.me/cibsecurity/17137...

8.2CVSS7.9AI score0.12388EPSS
Exploits3References1
NVD
NVD
added 2020/12/03 9:15 p.m.32 views

CVE-2020-26248

In the PrestaShop module "productcomments" before version 4.2.1, an attacker can use a Blind SQL injection to retrieve data or stop the MySQL service. The problem is fixed in 4.2.1 of the module...

8.2CVSS7.4AI score0.12388EPSS
Exploits3References5
Cvelist
Cvelist
added 2020/12/03 8:55 p.m.35 views

CVE-2020-26248 Blind SQL injection during the CommentGrade process

In the PrestaShop module "productcomments" before version 4.2.1, an attacker can use a Blind SQL injection to retrieve data or stop the MySQL service. The problem is fixed in 4.2.1 of the module...

6.8CVSS8.4AI score0.12388EPSS
Exploits3References5
Rows per page
Query Builder