RSS   Vulnerabilities for 'Productcomments'   RSS

2020-12-03
 
CVE-2020-26248

CWE-89
 

 
In the PrestaShop module "productcomments" before version 4.2.1, an attacker can use a Blind SQL injection to retrieve data or stop the MySQL service. The problem is fixed in 4.2.1 of the module.

 

 >>> Vendor: Prestashop 12 Products
Prestashop
EBAY
Ebay module
Faceted search module
Prestashop link
Prestashop linklist
Prestashop socialfollow
Correos express
Dashboard products
Contactform
Productcomments
Ps emailsubscription


Copyright 2024, cxsecurity.com

 

Back to Top