CVE-2024-28395 | Best-Kit bestkit_popup up to 1.7.2 on PrestaShop bestkit_popup.php sql injection

Posted by Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Best-Kit bestkit_popup up to 1.7.2 on PrestaShop. This issue affects some unknown processing of the file bestkit_popup.php. The manipulation leads to sql injection.

The identification of this vulnerability is CVE-2024-28395. The attack may be initiated remotely. There is no exploit available.

CVE-2024-28395 | Best-Kit bestkit_popup up to 1.7.2 on PrestaShop bestkit_popup.php sql injection

Related Posts

CVE-2023-40550 | rhboot shim verify_buffer_sbat out-of-bounds

CVE-2023-6630 | Contact Form 7 Plugin up to 4.1.0 on WordPress resource injection

CVE-2024-29194 | OneUptime 7.0.1803 is_master_admin authorization (GHSA-246p-xmg8-wmcq)

CVE-2024-24409 | Zoho ManageEngine ADManager Plus up to 7203 Modify Computers Option privileges management