Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Nuclei
Nucleiadded 10 hours ago45 views

PrestaShop xipblog - SQL Injection

In the blog module xipblog, an anonymous user can perform SQL injection. Even though the module has been patched in version 2.0.1, the version number was not incremented at the time. id: CVE-2023-27847 info: name: PrestaShop xipblog - SQL Injection author: mastercho severity: critical description...

9.8CVSS7.8AI score0.73129EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 2:27 a.m.2 views

CVE-2023-27847

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components...

9.8CVSS8.5AI score0.73129EPSS
Exploits1References1
NVD
NVDadded 2023/03/27 4:15 p.m.11 views

CVE-2023-27847

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components...

9.8CVSS9.9AI score0.73129EPSS
Exploits1References2
OSV
OSVadded 2023/03/27 4:15 p.m.0 views

CVE-2023-27847

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components...

9.8CVSS7.3AI score
Exploits0References2
Prion
Prionadded 2023/03/27 4:15 p.m.11 views

Sql injection

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components...

7.5CVSS9.8AI score0.73129EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/03/27 12:0 a.m.5 views

CVE-2023-27847

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components...

9.9AI score0.73129EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/03/27 12:0 a.m.4 views

PT-2023-21372 · Prestashop · Prestashop Xipblog

Name of the Vulnerable Software and Affected Versions: PrestaShop xipblog versions 2.0.1 and earlier Description: A SQL injection issue allows a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components. Recommendations: For PrestaShop xipblog versions 2.0.1 and...

9.8CVSS9.8AI score0.73129EPSS
Exploits1References4
CNNVD
CNNVDadded 2023/03/27 12:0 a.m.1 views

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides a variety of payment methods, SMS alerts and product image scaling and other features. A security vulnerability exists in PrestaShop xipblog version v.2.0.1 and earlier versions, whi...

9.8CVSS8.5AI score0.73129EPSS
Exploits1References3
Cvelist
Cvelistadded 2023/03/27 12:0 a.m.12 views

CVE-2023-27847

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components...

10AI score0.73129EPSS
Exploits1References2
CVE
CVEadded 2023/03/27 12:0 a.m.69 views

CVE-2023-27847

Summary of CVE-2023-27847 (PrestaShop xipblog) An SQL injection exists in PrestaShop xipblog module, affecting versions 2.0.1 and earlier. According to the Nuclei template, an anonymous user can exploit the vulnerability via the region-specific components xipcategoryclass and xippostsclass to exe...

9.8CVSS9.8AI score0.73129EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder