4 matches found
CVE-2024-24308
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...
CVE-2024-24308
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...
CVE-2024-24308
CVE-2024-24308 describes an SQL Injection in the Boostmyshopagent module for Prestashop, affecting versions 1.1.9 and earlier. The vulnerability allows a remote attacker to escalate privileges and exfiltrate sensitive data through vulnerable PHP files: changeOrderCarrier.php, relayPoint.php, and ...
CVE-2024-24308
SQL Injection vulnerability in Boostmyshop boostmyshopagent module for Prestashop versions 1.1.9 and before, allows remote attackers to escalate privileges and obtain sensitive information via changeOrderCarrier.php, relayPoint.php, and shippingConfirmation.php...