Vulnerabilities > Webshopworks > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-10-19 CVE-2023-45381 SQL Injection vulnerability in Webshopworks Creativepopup
In the module "Creative Popup" (creativepopup) up to version 1.6.9 from WebshopWorks for PrestaShop, a guest can perform SQL injection via `cp_download_popup().`
network
low complexity
webshopworks CWE-89
critical
9.8