Vulnerabilities (CVE)

Filtered by vendor Posthemes Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-30189 1 Posthemes 1 Posstaticblocks 2025-01-23 N/A 9.8 CRITICAL
Prestashop posstaticblocks <= 1.0.0 is vulnerable to SQL Injection via posstaticblocks::getPosCurrentHook().
CVE-2023-45379 1 Posthemes 1 Posrotatorimg 2024-11-21 N/A 9.8 CRITICAL
In the module "Rotator Img" (posrotatorimg) in versions at least up to 1.1 from PosThemes for PrestaShop, a guest can perform SQL injection.