CVE-2023-40920 Information

Description

Prixan prixanconnect up to v1.62 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::importProducts().

Reference

https://security.friendsofpresta.org/modules/2023/10/05/prixanconnect.html