5 matches found
Exploit for SQL Injection in Prestashop Blockwishlist
CVE-2022-31101 Exploit for PrestaShop bockwishlist module 2.1...
Prestashop Blockwishlist 2.1.0 SQL Injection
Exploit Title: Prestashop blockwishlist module 2.1.0 - SQLi Date: 29/07/22 Exploit Author: Karthik UJ @5up3r541y4n Vendor Homepage: https://www.prestashop.com/en Software Link blockwishlist: https://github.com/PrestaShop/blockwishlist/releases/tag/v2.1.0 Software Link prestashop:...
Prestashop blockwishlist module 2.1.0 - SQL injection Exploit
Exploit Title: Prestashop blockwishlist module 2.1.0 - SQLi Date: 29/07/22 Exploit Author: Karthik UJ @5up3r541y4n Vendor Homepage: https://www.prestashop.com/en Software Link blockwishlist: https://github.com/PrestaShop/blockwishlist/releases/tag/v2.1.0 Software Link prestashop:...
CVE-2022-31101 SQL Injection in prestashop/blockwishlist
prestashop/blockwishlist is a prestashop extension which adds a block containing the customer's wishlists. In affected versions an authenticated customer can perform SQL injection. This issue is fixed in version 2.1.1. Users are advised to upgrade. There are no known workarounds for this issue...
CVE-2022-31101
Prestashop Blockwishlist module (version 2.1.0) is affected by a remote authenticated SQL injection vulnerability (CVE-2022-31101). The underlying issue arises in the Blockwishlist extension used to display customer wishlists, enabling an authenticated user to inject SQL via insufficient input va...