Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-29	CVE-2022-22897	SQL Injection vulnerability in Apollotheme AP Pagebuilder 2.4.4 A SQL injection vulnerability in the product_all_one_img and image_product parameters of the ApolloTheme AP PageBuilder component through 2.4.4 for PrestaShop allows unauthenticated attackers to exfiltrate database data. network low complexity apollotheme CWE-89 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.