Prestashop · Sliding Cart Block · CVE-2023-50028
**Name of the Vulnerable Software and Affected Versions**
PrestaShop module "Sliding cart block" (blockslidingcart) versions up to 2.3.8
**Description**
A guest can perform SQL injection in the module "Sliding cart block" (blockslidingcart) for PrestaShop.
**Recommendations**
For versions up to 2.3.8, update to a version higher than 2.3.8 to resolve the issue.
As a temporary workaround, consider restricting access to the "Sliding cart block" module until a patch is available.