Improper neutralization of SQL parameter in Theme Volty CMS Payment Icon module for PrestaShop. In the module “Theme Volty CMS Payment Icon” (tvcmspaymenticon) up to version 4.0.1 from Theme Volty for PrestaShop, a guest can perform SQL injection in affected versions.
References
Link | Resource |
---|---|
https://security.friendsofpresta.org/modules/2023/09/26/tvcmspaymenticon.html | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-10-03T00:00:00
Updated: 2023-10-03T21:06:31.136893
Reserved: 2023-08-07T00:00:00
Link: CVE-2023-39645
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-03T21:15:10.240
Modified: 2023-10-05T15:16:41.543
Link: CVE-2023-39645
JSON object: View
Redhat Information
No data.
CWE