CVE-2023-45386 Information

Description

In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop a guest can perform SQL injection via extratabspro::searchcategory() extratabspro::searchproduct() and `extratabspro::searchmanufacturer().'

Reference

https://security.friendsofpresta.org/modules/2023/10/12/extratabspro.html