Vulnerabilities (CVE)

Filtered by vendor Prestamonster Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-50026 1 Prestamonster 1 Multi Accessories Pro 2024-11-21 N/A 9.8 CRITICAL
SQL injection vulnerability in Presta Monster "Multi Accessories Pro" (hsmultiaccessoriespro) module for PrestaShop versions 5.1.1 and before, allows remote attackers to escalate privileges and obtain sensitive information via the method HsAccessoriesGroupProductAbstract::getAccessoriesByIdProducts().