CVE-2024-36681

Published: 2024-06-24T23:15Z

Last Modified: 2024-11-21T09:22Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

SQL Injection vulnerability in the module "Isotope" (pk_isotope) <=1.7.3 from Promokit.eu for PrestaShop allows attackers to obtain sensitive information and cause other impacts via `pk_isotope::saveData` and `pk_isotope::removeData` methods. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt