CVE-2023-33663

CVE-2023-33663

EPSS 0.5%

In the module “Customization fields fee for your store” (aicustomfee) from ai-dev module for PrestaShop, an attacker can perform SQL injection up to 0.2.0. Release 0.2.1 fixed this security issue.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://security.friendsofpresta.org/modules/2023/08/16/aicustomfee.html https://www.boutique.ai-dev.fr/en/customization/62-customization-fee.html