Critical severity9.8NVD Advisory· Published Jan 19, 2024· Updated Jun 17, 2026
CVE-2023-50030
CVE-2023-50030
Description
In the module "Jms Setting" (jmssetting) from Joommasters for PrestaShop, a guest can perform SQL injection in versions <= 1.1.0. The method JmsSetting::getSecondImgs() has a sensitive SQL call that can be executed with a trivial http call and exploited to forge a blind SQL injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=1.1.0
Patches
Vulnerability mechanics
References
2- security.friendsofpresta.org/modules/2024/01/16/jmssetting.htmlnvdExploitPatchThird Party Advisory
- www.joommasters.comnvdProduct
News mentions
0No linked articles in our index yet.