CVE-2023-23315

Vulnerability Description

The PrestaShop e-commerce platform module stripejs contains a Blind SQL injection vulnerability up to version 4.5.5. The method `stripejsValidationModuleFrontController::initContent()` has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection.

Vulnerability Details

Published Date

March 01, 2023

Last Modified

November 21, 2024

Source

NVD

CVE-2023-23315

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment