11 matches found
CVE-2024-24303
SQL Injection vulnerability in HiPresta "Gift Wrapping Pro" hiadvancedgiftwrapping module for PrestaShop before version 1.4.1, allows remote attackers to escalate privileges and obtain sensitive information via the HiAdvancedGiftWrappingGiftWrappingModuleFrontController::addGiftWrappingCartValue...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
CVE-2024-24303
SQL Injection vulnerability in HiPresta "Gift Wrapping Pro" hiadvancedgiftwrapping module for PrestaShop before version 1.4.1, allows remote attackers to escalate privileges and obtain sensitive information via the HiAdvancedGiftWrappingGiftWrappingModuleFrontController::addGiftWrappingCartValue...
Sql injection
SQL Injection vulnerability in HiPresta "Gift Wrapping Pro" hiadvancedgiftwrapping module for PrestaShop before version 1.4.1, allows remote attackers to escalate privileges and obtain sensitive information via the HiAdvancedGiftWrappingGiftWrappingModuleFrontController::addGiftWrappingCartValue...
CVE-2024-24303
SQL Injection vulnerability in HiPresta "Gift Wrapping Pro" hiadvancedgiftwrapping module for PrestaShop before version 1.4.1, allows remote attackers to escalate privileges and obtain sensitive information via the HiAdvancedGiftWrappingGiftWrappingModuleFrontController::addGiftWrappingCartValue...
CVE-2024-24303
CVE-2024-24303 describes a SQL Injection in the HiPresta Gift Wrapping Pro module (hiadvancedgiftwrapping) for PrestaShop up to versions before 1.4.1. The vulnerability stems from the HiAdvancedGiftWrappingGiftWrappingModuleFrontController::addGiftWrappingCartValue() method, enabling remote attac...
CVE-2024-24303
SQL Injection vulnerability in HiPresta "Gift Wrapping Pro" hiadvancedgiftwrapping module for PrestaShop before version 1.4.1, allows remote attackers to escalate privileges and obtain sensitive information via the HiAdvancedGiftWrappingGiftWrappingModuleFrontController::addGiftWrappingCartValue...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
CVE-2023-45376
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
Sql injection
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" hicarouselspack for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct...
PrestaShop SQL Injection Vulnerability
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image zoom. A security vulnerability exists in PrestaShop HiPresta, which originates from a guest that can perform SQL...