First published: Thu May 11 2023(Updated: )
Prestashop possearchproducts 1.7 is vulnerable to SQL Injection via PosSearch::find().
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Prestashop Possearchproducts | =1.7 |
https://friends-of-presta.github.io/security-advisories/modules/2023/05/11/possearchproducts.html
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-30192 is a vulnerability in Prestashop possearchproducts 1.7 that allows for SQL Injection via PosSearch::find().
CVE-2023-30192 has a severity keyword of 'critical' and a severity value of 9.8.
Prestashop possearchproducts 1.7 is affected by CVE-2023-30192.
To fix CVE-2023-30192, update your Prestashop possearchproducts to a version that is not affected by the vulnerability.
Yes, you can find more information about CVE-2023-30192 at the following links: [reference-1], [reference-2].