Frentzen

**Name of the Vulnerable Software and Affected Versions** PEEL Shopping CMS version 9.4.0 **Description** The issue allows for authenticated SQL injection in the utilisateurs.php file. A user belonging to the administrator group can inject a malicious SQL query to affect the application's execution logic and retrieve information from the database. **Recommendations** For PEEL Shopping CMS version 9.4.0, consider restricting access to the utilisateurs.php file until a patch is available. As a temporary workaround, limit the privileges of administrator group users to minimize the risk of exploitation.