prestashop/productcomments on Packagist
PrestaShop module productcomments
CVE History
CVE | Published | CVSS v2 | CVSS v3 |
---|---|---|---|
CVE-2020-26248 | 8.2 HIGH | 6.4 MEDIUM | |
In the PrestaShop module "productcomments" before version 4.2.1, an attacker can use a Blind SQL injection to retrieve data or stop the MySQL service. The problem is fixed in 4.2.1 of the module. |