High severity7.5NVD Advisory· Published Aug 20, 2021· Updated Jun 17, 2026
CVE-2021-36748
CVE-2021-36748
Description
A SQL Injection issue in the list controller of the Prestahome Blog (aka ph_simpleblog) module before 1.7.8 for Prestashop allows a remote attacker to extract data from the database via the sb_category parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.7.8
- Range: <1.7.8
Patches
Vulnerability mechanics
References
3- blog.sorcery.ie/posts/ph_simpleblog_sqli/nvdExploitThird Party Advisory
- alysum5.promokit.eu/promokit/documentation/blog/nvdProductThird Party Advisory
- blog.sorcery.ienvdProduct
News mentions
0No linked articles in our index yet.