Vulnerability Details CVE-2023-6921
Blind SQL Injection vulnerability in PrestaShow Google Integrator (PrestaShop addon) allows for data extraction and modification. This attack is possible via command insertion in one of the cookies.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.1%
CVSS Severity
CVSS v3 Score 9.8
References
- https://cert.pl/en/posts/2024/01/CVE-2023-6921/
- https://cert.pl/posts/2024/01/CVE-2023-6921/
- https://prestashow.pl/pl/moduly-prestashop/28-prestashop-google-integrator-ga4-gtm-ads-remarketing.html
- https://cert.pl/en/posts/2024/01/CVE-2023-6921/
- https://cert.pl/posts/2024/01/CVE-2023-6921/
- https://prestashow.pl/pl/moduly-prestashop/28-prestashop-google-integrator-ga4-gtm-ads-remarketing.html
Products affected by CVE-2023-6921
-
cpe:2.3:a:prestashow:google_integrator:-