20Mar
CVE-2024-28389 | KnowBand spinwheel up to 3.0.3 on PrestaShop sendEmail sql injection
A vulnerability, which was classified as critical, has been found in KnowBand spinwheel up to 3.0.3 on PrestaShop. This issue affects the functionSpinWheelFrameSpinWheelModuleFrontController::sendEmail
. The manipulation leads to sql injection.
The identification of this vulnerability is CVE-2024-28389. The attack may be initiated remotely. There is no exploit available.