CVE-2023-34577 Information

Description

SQL injection vulnerability in Prestashop opartplannedpopup 1.4.11 and earlier allows remote attackers to run arbitrary SQL commands via OpartPlannedPopupModuleFrontController::prepareHook() method.

Reference

https://security.friendsofpresta.org/modules/2023/09/19/opartplannedpopup.html