CVE-2024-36681 Information

Description

SQL Injection vulnerability in the module \Isotope\ (pk_isotope) <=1.7.3 from Promokit.eu for PrestaShop allows attackers to obtain sensitive information and cause other impacts via pk_isotope::saveData and pk_isotope::removeData methods.

Reference

https://security.friendsofpresta.org/modules/2024/06/20/pk_isotope.html