CVE-2023-27847

Published March 27th, 2023

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

N/A

Affected

PROJECT

Description

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategoryclass and xippostsclass components.

xpert-idea/xipblog

Prestashop 1.6 & 1.7 Xpert Blog Module

GitHub