Improper neutralization of SQL parameter in Theme Volty CMS Payment Icon module for PrestaShop. In the module βTheme Volty CMS Payment Iconβ (tvcmspaymenticon) up to version 4.0.1 from Theme Volty for PrestaShop, a guest can perform SQL injection in affected versions.
9.8CVSS
9.7AI Score
0.001EPSS