Prestashop advancedpopupcreator v1.1.21 to v1.1.24 exists to contain a SQL injection vulnerability via the component AdvancedPopup::getPopups().
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
idnovate popup module \\(on entering\\, exit popup\\, add product\\) and newsletter |