CVE-2021-40814: SQL Injection
First published: Wed Sep 08 2021(Updated: )
The Customer Photo Gallery addon before 2.9.4 for PrestaShop is vulnerable to SQL injection.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mypresta Customer Photo Gallery | <2.9.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2021-40814.
What is the severity of CVE-2021-40814?
The severity of CVE-2021-40814 is critical with a severity value of 9.8.
Which software versions are affected by CVE-2021-40814?
The Customer Photo Gallery addon before version 2.9.4 for PrestaShop is affected by CVE-2021-40814.
What is the impact of CVE-2021-40814?
CVE-2021-40814 allows for SQL injection attacks, which can lead to unauthorized access, data disclosure, and potential manipulation of the affected system's database.
How can I fix CVE-2021-40814?
To fix CVE-2021-40814, you should update the Customer Photo Gallery addon to version 2.9.4 or later.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/mypresta
- canonical/mypresta customer photo gallery