CVE-2023-48925 | Buy Addons bavideotab up to 1.0.5 on PrestaShop run sql injection

Inserito da Angelo Barbosa | Dic 14, 2023 | CVE

A vulnerability was found in Buy Addons bavideotab up to 1.0.5 on PrestaShop. It has been rated as critical. Affected by this issue is the function BaVideoTabSaveVideoModuleFrontController::run. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2023-48925. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-48925 | Buy Addons bavideotab up to 1.0.5 on PrestaShop run sql injection

Post correlati

CVE-2024-2285 | boyiddha Automated-Mess-Management-System 1.0 /member/member_edit.php name cross site scripting

CVE-2024-32585 | extendWP Import Content in WordPress & WooCommerce with Excel Plugin cross site scripting

CVE-2024-37879 | Friendly SVN up to 1.0.11 /admin/config/save siteTitle/siteIco/siteLogo input validation

CVE-2024-8667 | HurryTimer Plugin up to 2.10.0 on WordPress authorization