CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-34577

SQL injection vulnerability in Prestashop opartplannedpopup 1.4.11 and earlier allows remote attackers to run arbitrary SQL commands via OpartPlannedPopupModuleFrontController::prepareHook() method.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.0%

CVSS Severity

CVSS v3 Score 9.8

References

https://security.friendsofpresta.org/modules/2023/09/19/opartplannedpopup.html
https://security.friendsofpresta.org/modules/2023/09/19/opartplannedpopup.html

Products affected by CVE-2023-34577

Planned Popup Project » Planned Popup » Version: N/A

cpe:2.3:a:planned_popup_project:planned_popup:-
Planned Popup Project » Planned Popup » Version: 1.4.11

cpe:2.3:a:planned_popup_project:planned_popup:1.4.11

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34577

Products

Pricing

Contact Us