CVE-2024-28389 | KnowBand spinwheel up to 3.0.3 on PrestaShop sendEmail sql injection

CVE-2024-28389 | KnowBand spinwheel up to 3.0.3 on PrestaShop sendEmail sql injection

A vulnerability, which was classified as critical, has been found in KnowBand spinwheel up to 3.0.3 on PrestaShop. This issue affects the function SpinWheelFrameSpinWheelModuleFrontController::sendEmail. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2024-28389. The attack may be initiated remotely. There is no exploit available.