CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-45386

In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can perform SQL injection via `extratabspro::searchcategory()`, `extratabspro::searchproduct()` and `extratabspro::searchmanufacturer().'

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 36.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://security.friendsofpresta.org/modules/2023/10/12/extratabspro.html
https://security.friendsofpresta.org/modules/2023/10/12/extratabspro.html

Products affected by CVE-2023-45386

Mypresta » Product Extra Tabs Pro » Version: Any

cpe:2.3:a:mypresta:product_extra_tabs_pro:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-45386

Products

Pricing

Contact Us