Security Advisory

CVE-2023-36263

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-31 00:00:00

Last updated 2024-09-06 18:06:27

Assigner mitre

State PUBLISHED

Description

Prestashop opartlimitquantity 1.4.5 and before is vulnerable to SQL Injection. OpartlimitquantityAlertlimitModuleFrontController::displayAjaxPushAlertMessage()` has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection.

← Browse all CVEs View on cve.org ↗