A vulnerability was found in Buy Addons bavideotab up to 1.0.5 on PrestaShop. It has been rated as critical. Affected by this issue is the function BaVideoTabSaveVideoModuleFrontController::run. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2023-48925. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.