Source |
CVE Liste |
Identifiant |
8403306 |
Date de publication |
2023-10-31 04:15:11 (vue: 2023-10-31 06:07:38) |
Titre |
CVE-2023-27846 |
Texte |
Vulnérabilité de l'injection SQL trouvée dans Prestashop Themevolty V.4.0.8 et avant de laisser un attaquant distantPour acquérir des privilèges via le TVCMSBLOG, TVCMSVideotab, TVCMSWishList, TVCMSBrandlist, TVCMSCATECHORYCHAINSLIDER, TVCMSCATEGORYPRODUCT, TVCMSCATEGORYSLIDER, TVCMSPAYMENCECICON, TVCMSTESTIMONIAL COMPONENTS.
SQL injection vulnerability found in PrestaShop themevolty v.4.0.8 and before allow a remote attacker to gain privileges via the tvcmsblog, tvcmsvideotab, tvcmswishlist, tvcmsbrandlist, tvcmscategorychainslider, tvcmscategoryproduct, tvcmscategoryslider, tvcmspaymenticon, tvcmstestimonial components. |
Envoyé |
Oui |
Condensat |
2023 27846 allow attacker before components cve found gain injection prestashop privileges remote sql themevolty tvcmsblog tvcmsbrandlist tvcmscategorychainslider tvcmscategoryproduct tvcmscategoryslider tvcmspaymenticon tvcmstestimonial tvcmsvideotab tvcmswishlist vulnerability |
Tags |
Vulnerability
|
Stories |
|
Notes |
|
Move |
|