In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can perform SQL injection via `extratabspro::searchcategory()`, `extratabspro::searchproduct()` and `extratabspro::searchmanufacturer().'
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
mypresta product extra tabs pro |
Vulmon