.. / CVE-2023-30150

Exploit for PrestaShop leocustomajax 1.0 & 1.0.0 - SQL Injection (CVE-2023-30150)

Description:

PrestaShop leocustomajax 1.0 and 1.0.0 are vulnerable to SQL Injection via modules/leocustomajax/leoajax.php.

Nuclei Template

View the template here CVE-2023-30150.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-30150.yaml
Copy

References:

https://security.friendsofpresta.org/module/2023/06/06/leocustomajax.html
https://nvd.nist.gov/vuln/detail/CVE-2023-30150
https://friends-of-presta.github.io/security-advisories/module/2023/06/06/leocustomajax.html
https://www.tenable.com/cve/CVE-2023-30150