Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:52 a.m.7 views

CVE-2023-46989

SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...

7.8CVSS8.6AI score0.00235EPSS
Exploits0
NVD
NVD
added 2024/02/09 8:15 a.m.15 views

CVE-2023-46350

SQL injection vulnerability in InnovaDeluxe "Manufacturer or supplier alphabetical search" idxrmanufacturer module for PrestaShop versions 2.0.4 and before, allows remote attackers to escalate privileges and obtain sensitive information via the methods IdxrmanufacturerFunctions::getCornersLink,...

9.8CVSS9.8AI score0.00611EPSS
Exploits0References1
Prion
Prion
added 2024/02/09 8:15 a.m.13 views

Sql injection

SQL injection vulnerability in InnovaDeluxe "Manufacturer or supplier alphabetical search" idxrmanufacturer module for PrestaShop versions 2.0.4 and before, allows remote attackers to escalate privileges and obtain sensitive information via the methods IdxrmanufacturerFunctions::getCornersLink,...

7.5CVSS8.2AI score0.00611EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/02/09 12:0 a.m.19 views

CVE-2023-46350

SQL injection vulnerability in InnovaDeluxe "Manufacturer or supplier alphabetical search" idxrmanufacturer module for PrestaShop versions 2.0.4 and before, allows remote attackers to escalate privileges and obtain sensitive information via the methods IdxrmanufacturerFunctions::getCornersLink,...

9.9AI score0.00611EPSS
Exploits0References1
CVE
CVE
added 2024/02/09 12:0 a.m.48 views

CVE-2023-46350

CVE-2023-46350 describes a SQL injection vulnerability in the InnovaDeluxe module for PrestaShop’s idxrmanufacturer component (methods: IdxrmanufacturerFunctions::getCornersLink, ::getManufacturersLike, ::getSuppliersLike). Affected: PrestaShop up to version 2.0.4 and earlier. Root cause: imprope...

9.8CVSS9.6AI score0.00611EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/12/28 6:15 a.m.1 views

CVE-2023-46989

SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...

7.8CVSS6.1AI score0.00235EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/12/28 6:15 a.m.4 views

CVE-2023-46989

SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...

7.8CVSS6.3AI score0.00235EPSS
Exploits0References2
NVD
NVD
added 2023/12/28 6:15 a.m.14 views

CVE-2023-46989

SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...

7.8CVSS0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/12/28 12:0 a.m.12 views

CVE-2023-46989

SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...

8.5AI score0.00235EPSS
Exploits0References1
CVE
CVE
added 2023/12/28 12:0 a.m.43 views

CVE-2023-46989

CVE-2023-46989 : A SQL Injection vulnerability exists in the Innovadeluxe Quick Order module for PrestaShop, affected in versions before 1.4.0. The issue is triggered via the getProducts() function in productlist.php, allowing a local attacker to execute arbitrary code. According to the connected...

7.8CVSS8AI score0.00235EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder