CVE-2023-27847

Description

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components.

Related CPE's

a xipblog_project xipblog *****prestashop **

References

https://github.com/xpert-idea/xipblog/

Product

https://friends-of-presta.github.io/security-advisories/modules/2023/03/23/xipblog.html

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io