SQL injection vulnerability in KnowBand for PrestaShop autosuggest prior to 2.0.0 allows an malicious user to run arbitrary SQL commands via the AutosuggestSearchModuleFrontController::initContent(), and AutosuggestSearchModuleFrontController::getKbProducts() components.