Vulnerabilities > Brevo

DATE CVE VULNERABILITY TITLE RISK
2023-07-26 CVE-2023-26859 SQL Injection vulnerability in Brevo
SQL injection vulnerability found in PrestaShop sendinblue v.4.0.15 and before allow a remote attacker to gain privileges via the ajaxOrderTracking.php component.
network
low complexity
brevo CWE-89
critical
 9.8
9.8