Filtered by vendor Apollotheme Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-44897 1 Apollotheme 1 Ap Pagebuilder 2024-11-21 6.1 Medium
A cross-site scripting (XSS) vulnerability in ApolloTheme AP PageBuilder component through 2.4.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the show_number parameter.
CVE-2022-22897 1 Apollotheme 1 Ap Pagebuilder 2024-11-21 9.8 Critical
A SQL injection vulnerability in the product_all_one_img and image_product parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthenticated attackers to exfiltrate database data.