prestashop/productcomments

on Packagist

24 releases

new releases every 3 months 3 weeks

last release was last Thursday at 12:23 PM

last checked today at 3:53 AM

2877723

PrestaShop module productcomments

CVE History

CVE	Published	CVSS v2	CVSS v3
CVE-2020-26248	December 3, 2020	8.2 HIGH	6.4 MEDIUM
In the PrestaShop module "productcomments" before version 4.2.1, an attacker can use a Blind SQL injection to retrieve data or stop the MySQL service. The problem is fixed in 4.2.1 of the module.