CVE-2023-45375

HIGH

CVSS v3

8.8

HIGH

EPSS Score

87.5%

exploit probability

CISA KEV

No

known exploited

Exploitation

SSVC status

Description

In the module "PireosPay" (pireospay) before version 1.7.10 from 01generator.com for PrestaShop, a guest can perform SQL injection via `PireosPayValidationModuleFrontController::postProcess().`

Technical Details

Published
10/17/2023

Frequently Asked Questions

What is CVE-2023-45375?

In the module "PireosPay" (pireospay) before version 1.7.10 from 01generator.com for PrestaShop, a guest can perform SQL injection via `PireosPayValidationModuleFrontController::postProcess().`

Is CVE-2023-45375 actively exploited?

Active exploitation of CVE-2023-45375 has not been confirmed. The EPSS score is 87.5%, indicating the estimated probability of exploitation in the next 30 days.

What is the CVSS score for CVE-2023-45375?

CVE-2023-45375 has a CVSS v3 base score of 8.8 (HIGH severity).

Is CVE-2023-45375 affecting your environment?

Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.