CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-25845

In the module "CD Custom Fields 4 Orders" (cdcustomfields4orders) <= 1.0.0 from Cleanpresta.com for PrestaShop, a guest can perform SQL injection in affected versions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.9%

CVSS Severity

CVSS v3 Score 9.8

References

https://security.friendsofpresta.org/modules/2024/03/05/cdcustomfields4orders.html
https://www.cleanpresta.com
https://security.friendsofpresta.org/modules/2024/03/05/cdcustomfields4orders.html
https://www.cleanpresta.com

Products affected by CVE-2024-25845

Cleanpresta » Cd Custom Fields 4 Orders » Version: Any

cpe:2.3:a:cleanpresta:cd_custom_fields_4_orders:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-25845

Products

Pricing

Contact Us