Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:34 p.m.7 views

CVE-2023-45378

In the module "PrestaBlog" prestablog version 4.4.7 and before from HDclic for PrestaShop, a guest can perform SQL injection. The script ajax sliderpositions.php has a sensitive SQL call that can be executed with a trivial http call and exploited to forge a SQL injection...

9.8CVSS7.7AI score0.00504EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-49670

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00504EPSS
Exploits0References1
NVD
NVD
added 2023/10/31 4:15 a.m.17 views

CVE-2023-45378

In the module "PrestaBlog" prestablog version 4.4.7 and before from HDclic for PrestaShop, a guest can perform SQL injection. The script ajax sliderpositions.php has a sensitive SQL call that can be executed with a trivial http call and exploited to forge a SQL injection...

9.8CVSS9.8AI score0.00504EPSS
Exploits0References1
Prion
Prion
added 2023/10/31 4:15 a.m.17 views

Sql injection

In the module "PrestaBlog" prestablog version 4.4.7 and before from HDclic for PrestaShop, a guest can perform SQL injection. The script ajax sliderpositions.php has a sensitive SQL call that can be executed with a trivial http call and exploited to forge a SQL injection...

7.5CVSS9.7AI score0.00504EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/31 12:0 a.m.15 views

CVE-2023-45378

In the module "PrestaBlog" prestablog version 4.4.7 and before from HDclic for PrestaShop, a guest can perform SQL injection. The script ajax sliderpositions.php has a sensitive SQL call that can be executed with a trivial http call and exploited to forge a SQL injection...

10AI score0.00504EPSS
Exploits0References1
CVE
CVE
added 2023/10/31 12:0 a.m.52 views

CVE-2023-45378

CVE-2023-45378 affects the PrestaBlog module (PrestaShop) version 4.4.7 and earlier from HDclic. The vulnerability is an unauthenticated SQL injection in the script ajax slider_positions.php, allowing a guest to perform a SQL injection via a trivial HTTP request. Reported impact in the sources is...

9.8CVSS9.7AI score0.00504EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder