CVE-2024-33266

SQL Injection vulnerability in Helloshop deliveryorderautoupdate v.2.8.1 and before allows an attacker to run arbitrary SQL commands via the DeliveryorderautoupdateOrdersModuleFrontController::initContent function...

CVE-2024-33266

SQL Injection vulnerability in Helloshop deliveryorderautoupdate v.2.8.1 and before allows an attacker to run arbitrary SQL commands via the DeliveryorderautoupdateOrdersModuleFrontController::initContent function...

CVE-2024-33266

CVE-2024-33266: SQL injection in Helloshop deliveryorderautoupdate up to v2.8.1 allows an attacker to execute arbitrary SQL via DeliveryorderautoupdateOrdersModuleFrontController::initContent. Root cause is unsafe handling of input in that controller, leading to unauthorized DB queries with poten...

CVE-2024-33266

SQL Injection vulnerability in Helloshop deliveryorderautoupdate v.2.8.1 and before allows an attacker to run arbitrary SQL commands via the DeliveryorderautoupdateOrdersModuleFrontController::initContent function...

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from the American company PrestaShop. The solution provides multiple payment methods, short message alerts and product image scaling. A SQL injection vulnerability exists in PrestaShop deliveryorderautoupdate 2.8.1 and earlier versions, which...

CVE-2024-33266

SQL Injection vulnerability in Helloshop deliveryorderautoupdate v.2.8.1 and before allows an attacker to run arbitrary SQL commands via the DeliveryorderautoupdateOrdersModuleFrontController::initContent function...

PT-2024-25177 · Unknown · Helloshop Deliveryorderautoupdate

Name of the Vulnerable Software and Affected Versions: Helloshop deliveryorderautoupdate versions 2.8.1 and earlier Description: The issue allows an attacker to run arbitrary SQL commands via the DeliveryorderautoupdateOrdersModuleFrontController::initContent function. This enables the execution ...