Limited Black Friday Offer:

PrestaShop 1.7.7.0 - SQL Injection Vulnerability CVE-2021-3110 Scanner

PrestaShop 1.7.7.0 allows SQL Injection vulnerability.

Short Info

Level

Critical

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Parent Category

PrestaShop 1.7.7.0 - SQL Injection Vulnerability CVE-2021-3110 Scanner Detail

The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module=productcomments controller=CommentGrade id_products[] parameter.

https://medium.com/@gondaliyajaimin797/cve-2021-3110-75a24943ca5e
https://www.exploit-db.com/exploits/49410