Description
PrestaShop is an Open Source e-commerce web application. Versions of PrestaShop prior to 1.7.8.2 are vulnerable to blind SQL injection using search filters with `orderBy` and `sortOrder` parameters. The problem is fixed in version 1.7.8.2.
Remediation
References
Related Vulnerabilities
GibbonEdu Deserialization of Untrusted Data Vulnerability (CVE-2024-24725)
WordPress Plugin Max Mega Menu Cross-Site Scripting (2.3.8)
WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.8.2)
WordPress Plugin CoolClock-a Javascript Analog Clock Cross-Site Scripting (4.3.4)
WordPress Plugin Debug Log Manager Cross-Site Request Forgery (2.2.1)