Critical severity9.8NVD Advisory· Published Nov 1, 2023· Updated Jun 17, 2026
CVE-2023-44025
CVE-2023-44025
Description
SQL injection vulnerability in addify Addifyfreegifts v.1.0.2 and before allows a remote attacker to execute arbitrary code via a crafted script to the getrulebyid function in the AddifyfreegiftsModel.php component.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- addify/Addifyfreegiftsdescription
- Range: <=1.0.2
Patches
Vulnerability mechanics
References
1- security.friendsofpresta.org/modules/2023/10/31/addifyfreegifts.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.