3 matches found
CVE-2023-27637
creationtimestamp| type| source ---|---|--- 2023-03-22 15:35:50+00:00| exploited| https://t.me/cibsecurity/60441 2025-05-29 13:34:23+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2023/CVE-2023-27637.yaml 2025-05-30 21:02:20+00:00| seen|...
CVE-2023-27637
An issue was discovered in the tshirtecommerce aka Custom Product Designer component 2.1.4 for PrestaShop. An HTTP request can be forged with a compromised productid GET parameter in order to exploit an insecure parameter in the front controller file designer.php, which could lead to a SQL...
CVE-2023-27637
Summary of CVE-2023-27637 (PrestaShop tshirtecommerce module) The PrestaShop module tshirtecommerce (Custom Product Designer) version 2.1.4 is reported vulnerable to unauthenticated SQL injection via the designer endpoint. The flaw is triggered by forging an HTTP request with a compromised produc...