CVE-2024-33269 | Prestaddons flashsales Module up to 1.9.7 on PrestaShop FsModel::getFlashSales sql injection

Posted by Angelo Barbosa | Apr 29, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Prestaddons flashsales Module up to 1.9.7 on PrestaShop. Affected by this issue is the function FsModel::getFlashSales. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2024-33269. The attack may be launched remotely. There is no exploit available.

CVE-2024-33269 | Prestaddons flashsales Module up to 1.9.7 on PrestaShop FsModel::getFlashSales sql injection

Related Posts

CVE-2024-5871 | WooCommerce plugin up to 2.6.2 on WordPress Social Login code injection

CVE-2024-34344 | Nuxt up to 3.12.3 NuxtTestComponentWrapper path cross site scripting (GHSA-v784-fjjh-f8r4)

CVE-2024-2180 | Zemana AntiLogger 2.74.204.664 IOCTL Code zam64.sys information disclosure

CVE-2023-6854 | Breakdance Plugin up to 1.7.0 on WordPress postmeta cross site scripting