AI Score
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
MyPrestaModules ordersexport before v5.0 was discovered to contain multiple SQL injection vulnerabilities at send.php via the key and save_setting parameters.
security.friendsofpresta.org/modules/2023/11/09/ordersexport.html