CVE-2024-34989

Publication date

2024-06-21 00:00:00

Family

mitre

State

PUBLISHED

Description

In the module RSI PDF/HTML catalog evolution (prestapdf) <= 7.0.0 from RSI for PrestaShop, a guest can perform SQL injection via `PrestaPDFProductListModuleFrontController::queryDb().