A SQL Injection issue in the list controller of the Prestahome Blog (aka ph_simpleblog) module before 1.7.8 for Prestashop allows a remote attacker to extract data from the database via the sb_category parameter.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-08-20T17:30:34
Updated: 2024-08-04T01:01:58.910Z
Reserved: 2021-07-15T00:00:00
Link: CVE-2021-36748
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-08-20T18:15:07.967
Modified: 2024-11-21T06:14:00.757
Link: CVE-2021-36748
Redhat
No data.