CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-40923

MyPrestaModules ordersexport before v5.0 was discovered to contain multiple SQL injection vulnerabilities at send.php via the key and save_setting parameters.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.8%

CVSS Severity

CVSS v3 Score 8.8

References

https://security.friendsofpresta.org/modules/2023/11/09/ordersexport.html
https://security.friendsofpresta.org/modules/2023/11/09/ordersexport.html

Products affected by CVE-2023-40923

None » None » Version:

_excel)_export:*
Myprestamodules » Orders (Csv » Version: Any

cpe:2.3:a:myprestamodules:orders_(csv

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-40923

Products

Pricing

Contact Us