CVEDB API

The Customer Photo Gallery addon before 2.9.4 for PrestaShop is vulnerable to SQL injection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.7%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2021-40814

Mypresta » Customer Photo Gallery » Version: N/A

cpe:2.3:a:mypresta:customer_photo_gallery:-
Mypresta » Customer Photo Gallery » Version: 2.3

cpe:2.3:a:mypresta:customer_photo_gallery:2.3
Mypresta » Customer Photo Gallery » Version: 2.4

cpe:2.3:a:mypresta:customer_photo_gallery:2.4
Mypresta » Customer Photo Gallery » Version: 2.5

cpe:2.3:a:mypresta:customer_photo_gallery:2.5
Mypresta » Customer Photo Gallery » Version: 2.6

cpe:2.3:a:mypresta:customer_photo_gallery:2.6
Mypresta » Customer Photo Gallery » Version: 2.7

cpe:2.3:a:mypresta:customer_photo_gallery:2.7
Mypresta » Customer Photo Gallery » Version: 2.8

cpe:2.3:a:mypresta:customer_photo_gallery:2.8
Mypresta » Customer Photo Gallery » Version: 2.9

cpe:2.3:a:mypresta:customer_photo_gallery:2.9
Mypresta » Customer Photo Gallery » Version: 2.9.1

cpe:2.3:a:mypresta:customer_photo_gallery:2.9.1
Mypresta » Customer Photo Gallery » Version: 2.9.2

cpe:2.3:a:mypresta:customer_photo_gallery:2.9.2
Mypresta » Customer Photo Gallery » Version: 2.9.3

cpe:2.3:a:mypresta:customer_photo_gallery:2.9.3