CVE-2024-33269
April 29, 2024, 8:15 p.m.
Tags
Product(s) Impacted
Prestaddons Flashsales
- 1.9.7 and before
Description
SQL Injection vulnerability in Prestaddons flashsales 1.9.7 and before allows an attacker to run arbitrary SQL commands via the FsModel::getFlashSales method.
Weaknesses
Date
Published: April 29, 2024, 8:15 p.m.
Last Modified: April 29, 2024, 8:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
cve@mitre.org
References
https://security.friendsofpresta.org/
cve@mitre.org