CVE-2021-3110
23Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendepss 21%
exploitation probability
21%top 3% of all CVEs
observed exploitation
nono source reports it
The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module=productcomments controller=CommentGrade id_products[] parameter.
Affected products
n/a · n/a