Unrated severityNVD Advisory· Published Oct 31, 2023· Updated Sep 5, 2024
CVE-2023-45378
CVE-2023-45378
Description
In the module "PrestaBlog" (prestablog) version 4.4.7 and before from HDclic for PrestaShop, a guest can perform SQL injection. The script ajax slider_positions.php has a sensitive SQL call that can be executed with a trivial http call and exploited to forge a SQL injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- HDclic/PrestaBlogdescription
- Range: <=4.4.7
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.