SQL injection vulnerability in Presta Monster "Multi Accessories Pro" (hsmultiaccessoriespro) module for PrestaShop versions 5.1.1 and before, allows remote attackers to escalate privileges and obtain sensitive information via the method HsAccessoriesGroupProductAbstract::getAccessoriesByIdProducts().
References
Link | Resource |
---|---|
https://security.friendsofpresta.org/modules/2024/02/08/hsmultiaccessoriespro.html | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2024-02-09T00:00:00
Updated: 2024-02-09T07:30:13.796696
Reserved: 2023-12-04T00:00:00
Link: CVE-2023-50026
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-09T08:15:08.460
Modified: 2024-06-07T14:12:14.943
Link: CVE-2023-50026
JSON object: View
Redhat Information
No data.
CWE