CVE-2021-3110

CVE-2021-3110

EPSS 20.7%

The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module=productcomments controller=CommentGrade id_products[] parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://medium.com/%40gondaliyajaimin797/cve-2021-3110-75a24943ca5e https://www.exploit-db.com/exploits/49410