CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

121 matches found

PrestaShop lgcookieslaw - SQL Injection

The EU Cookie Law GDPR Banner + Blocker PrestaShop module before 2.1.3 allows blind SQL injection via the lglaw or lgcookieslaw cookie used to store user consent choices. id: CVE-2022-44727 info: name: PrestaShop lgcookieslaw - SQL Injection author: mastercho severity: critical description: | The...

9.1CVSS7.3AI score0.02397EPSS

Exploits1References3

RedhatCVE•added 2026/01/09 12:38 p.m.•8 views

CVE-2023-50027

SQL Injection vulnerability in Buy Addons baproductzoommagnifier module for PrestaShop versions 1.0.16 and before, allows remote attackers to escalate privileges and gain sensitive information via BaproductzoommagnifierZoomModuleFrontController::run method...

9.8CVSS8.2AI score0.00748EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:37 p.m.•10 views

CVE-2023-50028

In the module "Sliding cart block" blockslidingcart up to version 2.3.8 from PrestashopModules.eu for PrestaShop, a guest can perform SQL injection...

9.8CVSS7.6AI score0.00666EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:35 p.m.•7 views

CVE-2023-45256

Multiple SQL injection vulnerabilities in the EuroInformation MoneticoPaiement module before 1.1.1 for PrestaShop allow remote attackers to execute arbitrary SQL commands via the TPE, societe, MAC, reference, or aliascb parameter to transaction.php, validation.php, or callback.php...

5.4CVSS6.7AI score0.00224EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 12:35 p.m.•13 views

CVE-2023-45386

In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can perform SQL injection via extratabspro::searchcategory, extratabspro::searchproduct and extratabspro::searchmanufacturer.'...

9.8CVSS8.1AI score0.00636EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 9:11 a.m.•5 views

CVE-2022-35933

This package is a PrestaShop module that allows users to post reviews and rate products. There is a vulnerability where the attacker could steal an administrator's cookie. The issue is fixed in version 5.0.2...

6.1CVSS6.4AI score0.00432EPSS

Exploits0References1