2 matches found
CVE-2024-36680
creationtimestamp| type| source ---|---|--- 2024-06-21 14:20:32+00:00| published-proof-of-concept| https://t.me/HackingInsights/3236 2024-06-24 16:49:28+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/10731...
CVE-2024-36680
In the module "Facebook" pkfacebook =1.0.1 from Promokit.eu for PrestaShop, a guest can perform SQL injection. The ajax script facebookConnect.php have a sensitive SQL call that can be executed with a trivial http call and exploited to forge a SQL injection...