SQL injection vulnerability in the module βComplete for Create a Quote in Frontend + Backend Proβ (askforaquotemodul) <= 1.0.51 from Buy Addons for PrestaShop allows attackers to view sensitive information and cause other impacts via methods AskforaquotemodulcustomernewquoteModuleFrontController::run()
, AskforaquotemoduladdproductnewquoteModuleFrontController::run()
, AskforaquotemodulCouponcodeModuleFrontController::run()
, AskforaquotemodulgetshippingcostModuleFrontController::run()
, AskforaquotemodulgetstateModuleFrontController::run().
[
{
"cpes": [
"cpe:2.3:a:prestashop:ask_for_a_quote:1.0.52:*:*:*:*:*:*:*"
],
"vendor": "prestashop",
"product": "ask_for_a_quote",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "1.0.52",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]