MidnightBSD

Advisories for boxtal

CVE-2023-30151

A SQL injection vulnerability in the Boxtal (envoimoinscher) module for PrestaShop, after version 3.1.10, allows remote attackers to execute arbitrary SQL commands via the `key` GET parameter.

Products Affected

Vendor Product Version
prestashop prestashop *
boxtal envoimoinscher *