3 matches found
CVE-2024-28388
SQL injection vulnerability in SunnyToo stproductcomments module for PrestaShop v.1.0.5 and before, allows a remote attacker to escalate privileges and obtain sensitive information via the StProductCommentClass::getListcomments method...
CVE-2024-28388
The CVE-2024-28388 vulnerability affects SunnyToo stproductcomments module for PrestaShop up to version 1.0.5 and earlier, due to a SQL injection in StProductCommentClass::getListcomments. The issue can allow a remote attacker to escalate privileges and exfiltrate sensitive information, with CVSS...
CVE-2024-28388
SQL injection vulnerability in SunnyToo stproductcomments module for PrestaShop v.1.0.5 and before, allows a remote attacker to escalate privileges and obtain sensitive information via the StProductCommentClass::getListcomments method...