Vulnerabilities > Idnovate
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-31 | CVE-2023-45899 | Incorrect Authorization vulnerability in Idnovate Superuser 2.3.5 An issue in the component SuperUserSetuserModuleFrontController:init() of idnovate superuser before v2.4.2 allows attackers to bypass authentication via a crafted HTTP call. | 7.5 |
| 2023-04-12 | CVE-2023-27032 | SQL Injection vulnerability in Idnovate Popup Module (On Entering, Exit Popup, ADD Product) and Newsletter 1.1.21/1.1.24 Prestashop advancedpopupcreator v1.1.21 to v1.1.24 was discovered to contain a SQL injection vulnerability via the component AdvancedPopup::getPopups(). | 9.8 |