CVE-2023-27569

Name of the Vulnerable Software and Affected Versions eo tags package versions prior to 1.3.0 for PrestaShop

Description The issue allows SQL injection via an HTTP User-Agent or Referer header. This can potentially lead to unauthorized access to sensitive data.

Recommendations For versions prior to 1.3.0, update to version 1.3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the eo tags package until a patch is available. Avoid using the User-Agent and Referer headers in HTTP requests to the affected package until the issue is resolved.