CVE-2023-34576

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0740%

EPSS Percentile42.59th

Published2023年9月21日

Last Modified2026年6月12日

Vulnerability Description

SQL injection vulnerability in updatepos.php in PrestaShop opartfaq through 1.0.3 allows remote attackers to run arbitrary SQL commands via unspedified vector.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 https://security.friendsofpresta.org/modules/2023/09/19/opartfaq.html

相关漏洞威胁

CVE-2023-45419.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ween Software Admin Panel al...

CVE-2023-61909.8

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in İzmir Katip Çelebi University Univ...

CVE-2023-46719.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Talent Software ECOP allows ...

CVE-2023-66759.8

Unrestricted Upload of File with Dangerous Type vulnerability in National Keep Cyber Security Services CyberMath allows Upload a W...