CVE-2023-27846 Information

Description

SQL injection vulnerability found in PrestaShop themevolty v.4.0.8 and before allow a remote attacker to gain privileges via the tvcmsblog tvcmsvideotab tvcmswishlist tvcmsbrandlist tvcmscategorychainslider tvcmscategoryproduct tvcmscategoryslider tvcmspaymenticon tvcmstestimonial components.

Reference

https://security.friendsofpresta.org/modules/2023/10/25/tvcmsblog.html