14 matches found
EUVD-2023-34581
Malicious code in bioql PyPI...
CVE-2023-30153
An SQL injection vulnerability in the Payplug payplug module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via the ajax.php front controller...
CVE-2023-30153
An SQL injection vulnerability in the Payplug payplug module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via the ajax.php front controller...
CVE-2023-30153
An SQL injection vulnerability in the Payplug payplug module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via the ajax.php front controller...
CVE-2023-30153
An SQL injection vulnerability in the Payplug payplug module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via the ajax.php front controller...
Sql injection
An SQL injection vulnerability in the Payplug payplug module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via the ajax.php front controller...
WordPress WooCommerce PayPlug Plugin <= 3.5.3 is vulnerable to Cross Site Scripting (XSS)
Software WooCommerce PayPlug Type Plugin Vulnerable versions = 3.5.3 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4fff2e966091 Credits Rafie Muhammad Patchstack...
CVE-2023-30153
An SQL injection vulnerability in the Payplug payplug module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via the ajax.php front controller...
PT-2023-22561 · Prestashop · Payplug
Name of the Vulnerable Software and Affected Versions: PrestaShop module payplug versions 3.6.0 through 3.7.1 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the ajax.php front controller, which is vulnerable to SQL injection attacks...
CVE-2023-30153
An SQL injection vulnerability in the Payplug payplug module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via the ajax.php front controller...
CVE-2023-30153
CVE-2023-30153 affects the PrestaShop Payplug module. Affected versions are 3.6.0–3.7.1, where an SQL injection via the ajax.php front controller allows remote attackers to execute arbitrary SQL commands. The concrete impact is described as high confidentiality, integrity, and availability concer...
PrestaShop SQL注入漏洞
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image zoom. A security vulnerability exists in PrestaShop, which originates from a SQL injection vulnerability in the...
WordPress WooCommerce PayPlug plugin <= 3.5.3 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress WooCommerce PayPlug plugin versions = 3.5.3. Solution No patched version available...
WordPress WooCommerce PayPlug plugin <= 3.5.3 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress WooCommerce PayPlug plugin versions = 3.5.3. Solution No patched version available...