Jaimin Gondaliya

1 exploit Active since Jan 2021
CVE-2021-3110 EXPLOITDB CRITICAL text WORKING POC
PrestaShop 1.7.7.0 - SQL Injection via Product Comments Module id_products[] Parameter
The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module=productcomments controller=CommentGrade id_products[] parameter.
CVSS 9.8