15 matches found
CVE-2023-45386
In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can perform SQL injection via extratabspro::searchcategory, extratabspro::searchproduct and extratabspro::searchmanufacturer.'...
EUVD-2023-50573
Malicious code in bioql PyPI...
EUVD-2023-49678
Malicious code in bioql PyPI...
CVE-2023-46351
In the module mib 1.6.1 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The methods mib::getManufacturersByCategory has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection...
Sql injection
In the module mib 1.6.1 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The methods mib::getManufacturersByCategory has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection...
CVE-2023-46351
In the module mib 1.6.1 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The methods mib::getManufacturersByCategory has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection...
CVE-2023-46351
The CVE-2023-46351 issue affects the mib module for PrestaShop before version 1.6.1. A guest can perform SQL injection via the mib::getManufacturersByCategory() function, triggered by a trivial HTTP request. The underlying SQL calls are sensitive, allowing an attacker to forge a SQL injection wit...
CVE-2023-46351
In the module mib 1.6.1 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The methods mib::getManufacturersByCategory has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection...
CVE-2023-46353
In the module "Product Tag Icons Pro" ticons before 1.8.4 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The method TiconProduct::getTiconByProductAndTicon has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection...
CVE-2023-46353
CVE-2023-46353 (Product Tag Icons Pro, PrestaShop) Vulnerability exists in the module before 1.8.4 where a guest can induce a SQL injection via the TiconProduct::getTiconByProductAndTicon() function due to sensitive SQL calls that can be invoked with a trivial HTTP request. The issue affects the ...
CVE-2023-46353
In the module "Product Tag Icons Pro" ticons before 1.8.4 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The method TiconProduct::getTiconByProductAndTicon has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection...
CVE-2023-46353
In the module "Product Tag Icons Pro" ticons before 1.8.4 from MyPresta.eu for PrestaShop, a guest can perform SQL injection. The method TiconProduct::getTiconByProductAndTicon has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection...
Sql injection
In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can perform SQL injection via extratabspro::searchcategory, extratabspro::searchproduct and extratabspro::searchmanufacturer.'...
CVE-2023-45386
In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can perform SQL injection via extratabspro::searchcategory, extratabspro::searchproduct and extratabspro::searchmanufacturer.'...
CVE-2023-45386
CVE-2023-45386 affects the PrestaShop module extratabspro from MyPresta.eu, prior to version 2.2.8. The vulnerability is an SQL injection exploitable via the functions extratabspro::searchcategory(), extratabspro::searchproduct(), and extratabspro::searchmanufacturer(). The impact is consistent w...