A vulnerability, which was classified as critical, has been found in Best-Kit bestkit_popup up to 1.7.2 on PrestaShop. This issue affects some unknown processing of the file bestkit_popup.php. The manipulation leads to sql injection.

The identification of this vulnerability is CVE-2024-28395. The attack may be initiated remotely. There is no exploit available.