← Back to CVE List

CVE-2023-46989

Published: 2023-12-28T06:15Z
Last Modified: 2024-11-21T08:29Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
SQL Injection vulnerability in the Innovadeluxe Quick Order module for PrestaShop before v.1.4.0, allows local attackers to execute arbitrary code via the getProducts() function in the productlist.php file. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt