CVE-2024-33275 Information

Description

SQL injection vulnerability in Webbax supernewsletter v.1.4.21 and before allows a remote attacker to escalate privileges via the Super Newsletter module in the product_search.php components.

Reference

https://www.webbax.ch/2017/08/30/9-modules-prestashop-gratuits-offert-par-webbax/ https://security.friendsofpresta.org/modules/2024/04/29/supernewsletter.html