Vulnerabilities > Themevolty > Theme Volty CMS Blog > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-31 | CVE-2023-27846 | SQL Injection vulnerability in Themevolty Theme Volty CMS Blog 4.0.1/4.0.8 SQL injection vulnerability found in PrestaShop themevolty v.4.0.8 and before allow a remote attacker to gain privileges via the tvcmsblog, tvcmsvideotab, tvcmswishlist, tvcmsbrandlist, tvcmscategorychainslider, tvcmscategoryproduct, tvcmscategoryslider, tvcmspaymenticon, tvcmstestimonial components. | 9.8 |
| 2023-08-28 | CVE-2023-39650 | SQL Injection vulnerability in Themevolty Theme Volty CMS Blog Theme Volty CMS Blog up to version v4.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /tvcmsblog/single. | 9.8 |