VYPR

aftermailpresta

by Prestashop

CVEs (1)

  • CVE-2023-30154Oct 14, 2023
    risk 0.00cvss epss 0.01

    Multiple improper neutralization of SQL parameters in module AfterMail (aftermailpresta) for PrestaShop, before version 2.2.1, allows remote attackers to perform SQL injection attacks via `id_customer`, `id_conf`, `id_product` and `token` parameters in `aftermailajax.php via the…