CVE-2023-48925 | Buy Addons bavideotab up to 1.0.5 on PrestaShop run sql injection

Inserito da Angelo Barbosa | Dic 14, 2023 | CVE

A vulnerability was found in Buy Addons bavideotab up to 1.0.5 on PrestaShop. It has been rated as critical. Affected by this issue is the function BaVideoTabSaveVideoModuleFrontController::run. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2023-48925. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-48925 | Buy Addons bavideotab up to 1.0.5 on PrestaShop run sql injection

Post correlati

CVE-2024-22550 | ShopSite 14.0 SVG File /alsdemo/ss/mediam.cgi unrestricted upload (ID 176312)

CVE-2024-9538 | ShopLentor Plugin up to 2.9.8 on WordPress FAQ Widget Elementor Template information disclosure

CVE-2024-33509 | Fortinet FortiWeb up to 6.3.23/6.4.3/7.0.10/7.2.1 certificate validation (FG-IR-22-326)

CVE-2024-38874 | events2 Extension up to 8.3.7/9.0.5 on TYPO3 resource injection