10 matches found
CVE-2023-46989
SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...
CVE-2023-46350
SQL injection vulnerability in InnovaDeluxe "Manufacturer or supplier alphabetical search" idxrmanufacturer module for PrestaShop versions 2.0.4 and before, allows remote attackers to escalate privileges and obtain sensitive information via the methods IdxrmanufacturerFunctions::getCornersLink,...
Sql injection
SQL injection vulnerability in InnovaDeluxe "Manufacturer or supplier alphabetical search" idxrmanufacturer module for PrestaShop versions 2.0.4 and before, allows remote attackers to escalate privileges and obtain sensitive information via the methods IdxrmanufacturerFunctions::getCornersLink,...
CVE-2023-46350
SQL injection vulnerability in InnovaDeluxe "Manufacturer or supplier alphabetical search" idxrmanufacturer module for PrestaShop versions 2.0.4 and before, allows remote attackers to escalate privileges and obtain sensitive information via the methods IdxrmanufacturerFunctions::getCornersLink,...
CVE-2023-46350
CVE-2023-46350 describes a SQL injection vulnerability in the InnovaDeluxe module for PrestaShop’s idxrmanufacturer component (methods: IdxrmanufacturerFunctions::getCornersLink, ::getManufacturersLike, ::getSuppliersLike). Affected: PrestaShop up to version 2.0.4 and earlier. Root cause: imprope...
CVE-2023-46989
SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...
CVE-2023-46989
SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...
CVE-2023-46989
SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...
CVE-2023-46989
SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts function in the productlist.php file...
CVE-2023-46989
CVE-2023-46989 : A SQL Injection vulnerability exists in the Innovadeluxe Quick Order module for PrestaShop, affected in versions before 1.4.0. The issue is triggered via the getProducts() function in productlist.php, allowing a local attacker to execute arbitrary code. According to the connected...