VYPR

Newsletter Popup PRO with Voucher/Coupon code

by Active Design

CVEs (1)

  • CVE-2023-47308CriNov 15, 2023
    risk 0.64cvss 9.8epss 0.01

    In the module "Newsletter Popup PRO with Voucher/Coupon code" (newsletterpop) before version 2.6.1 from Active Design for PrestaShop, a guest can perform SQL injection in affected versions. The method `NewsletterpopsendVerificationModuleFrontController::checkEmailSubscription()`…