CVE-2023-46989 | Innovadeluxe Quick Order module up to 1.3.x on PrestaShop productlist.php getProducts sql injection

CVE-2023-46989 | Innovadeluxe Quick Order module up to 1.3.x on PrestaShop productlist.php getProducts sql injection

A vulnerability was found in Innovadeluxe Quick Order module up to 1.3.x on PrestaShop and classified as critical. Affected by this issue is the function getProducts of the file productlist.php. The manipulation leads to sql injection. This vulnerability is handled as CVE-2023-46989. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.