Vulnerability Details : CVE-2023-39639
LeoTheme leoblog up to v3.1.2 was discovered to contain a SQL injection vulnerability via the component LeoBlogBlog::getListBlogs.
Vulnerability category: Sql Injection
Products affected by CVE-2023-39639
We don't have affected product information for this CVE yet
Exploit prediction scoring system (EPSS) score for CVE-2023-39639
0.11%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 46 %
Percentile, the proportion of vulnerabilities that are scored at or less
References for CVE-2023-39639
-
https://addons.prestashop.com/fr/2_community-developer?contributor=190902&id_category=3
Just a moment...
-
https://security.friendsofpresta.org/modules/2023/08/31/leoblog.html
[CVE-2023-39639] Improper neutralization of SQL parameter in LeoTheme - Leo Blog module for PrestaShop | Friends-Of-Presta Security Advisories
Jump to