CVE-2023-27033

Name of the Vulnerable Software and Affected Versions Prestashop cdesigner versions 3.1.3 through 3.1.8

Description A code injection issue was found in the component CdesignerSaverotateModuleFrontController::initContent(). This allows for code injection, potentially leading to unauthorized access or control.

Recommendations For versions 3.1.3 through 3.1.8, as a temporary workaround, consider disabling the CdesignerSaverotateModuleFrontController::initContent() function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.