CVE-2023-30149P2CRITICALCVSS 9.8fixed in 1.8.12·fixed in 2.0.32023-06-02
CVE-2023-30149 [CRITICAL] CWE-89 CVE-2023-30149: SQL injection vulnerability in the City Autocomplete (cityautocomplete) module from ebewe.net for Pr
SQL injection vulnerability in the City Autocomplete (cityautocomplete) module from ebewe.net for PrestaShop, prior to version 1.8.12 (for PrestaShop version 1.5/1.6) or prior to 2.0.3 (for PrestaShop version 1.7), allows remote attackers to execute arbitrary SQL commands via the type, input_name. or q parameter in the autocompletion.php front cont
nvd