Description In the PrestaShop < 2.4.3 module "Length, weight or volume sell" (ailinear) there is a SQL injection vulnerability. Remediation References CVE-2023-31672 Related Vulnerabilities WordPress Plugin AccessPress Custom CSS includes Backdoor [Only if downloaded via the vendor website] (2.0.1) WordPress Plugin Student Result or Employee Database Security Bypass (1.6.3) YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5881) WordPress Plugin Subscribe to Comments Local File Inclusion (2.1.2) Apache HTTP Server Out-of-bounds Write Vulnerability (CVE-2019-10097) Severity Critical Classification CVE-2023-31672 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities