CVE-2023-45376

Published: 2023-10-19T20:15Z

Last Modified: 2024-11-21T08:26Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In the module "Carousels Pack - Instagram, Products, Brands, Supplier" (hicarouselspack) for PrestaShop up to version 1.5.0 from HiPresta for PrestaShop, a guest can perform SQL injection via HiCpProductGetter::getViewedProduct().` > MITRE Terms of Use apply – see LICENSE‑MITRE.txt