Improper neutralization of SQL parameter in Theme Volty CMS Category Product module for PrestaShop. In the module βTheme Volty CMS Category Productβ (tvcmscategoryproduct) up to version 4.0.1 from Theme Volty for PrestaShop, a guest can perform SQL injection in affected versions.
9.8CVSS
9.7AI Score
0.001EPSS