Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
prestashop prestashop vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-30189
Prestashop posstaticblocks <= 1.0.0 is vulnerable to SQL Injection via posstaticblocks::getPosCurrentHook().
Posthemes Posstaticblocks
9.8
CVSSv3
CVE-2023-30192
Prestashop possearchproducts 1.7 is vulnerable to SQL Injection via PosSearch::find().
Prestashop Possearchproducts 1.7
9.8
CVSSv3
CVE-2023-30194
Prestashop posstaticfooter <= 1.0.0 is vulnerable to SQL Injection via posstaticfooter::getPosCurrentHook().
Prestashop Poststaticfooter
9.8
CVSSv3
CVE-2023-27843
SQL injection vulnerability found in PrestaShop askforaquote v.5.4.2 and before allow a remote malicious user to gain privileges via the QuotesProduct::deleteProduct component.
Ask For A Quote Project Ask For A Quote
9.8
CVSSv3
CVE-2023-26865
SQL injection vulnerability found in PrestaShop bdroppy v.2.2.12 and before allowing a remote malicious user to gain privileges via the BdroppyCronModuleFrontController::importProducts component.
Brandsdistribution Bdroppy
9.8
CVSSv3
CVE-2023-28839
Shoppingfeed PrestaShop is an add-on to the PrestaShop ecommerce platform to synchronize data. The module Shoppingfeed for PrestaShop is vulnerable to SQL injection between version 1.4.0 and 1.8.2 due to a lack of input sanitization. This issue has been addressed in version 1.8.3...
Shoppingfeed Shoppingfeed
9.8
CVSSv3
CVE-2023-27032
Prestashop advancedpopupcreator v1.1.21 to v1.1.24 exists to contain a SQL injection vulnerability via the component AdvancedPopup::getPopups().
Idnovate Popup Module (on Entering, Exit Popup, Add Product) And Newsletter
9.8
CVSSv3
CVE-2023-27033
Prestashop cdesigner v3.1.3 to v3.1.8 exists to contain a code injection vulnerability via the component CdesignerSaverotateModuleFrontController::initContent().
Cdesigner Project Cdesigner
9.8
CVSSv3
CVE-2023-28843
PrestaShop/paypal is an open source module for the PrestaShop web commerce ecosystem which provides paypal payment support. A SQL injection vulnerability found in the PrestaShop paypal module from release from 3.12.0 to and including 3.16.3 allow a remote malicious user to gain p...
202-ecommerce Paypal
9.8
CVSSv3
CVE-2023-27847
SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote malicious user to gain privileges via the xipcategoryclass and xippostsclass components.
Xipblog Project Xipblog
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »