{
  "id": "CVE-2023-39648",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-10-03T22:15:10.323",
  "lastModified": "2023-10-03T23:55:59.983",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "Improper neutralization of SQL parameter in Theme Volty CMS Testimonial module for PrestaShop. In the module \u201cTheme Volty CMS Testimonial\u201d (tvcmstestimonial) up to version 4.0.1 from Theme Volty for PrestaShop, a guest can perform SQL injection in affected versions."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://security.friendsofpresta.org/modules/2023/09/26/tvcmstestimonial.html",
      "source": "cve@mitre.org"
    }
  ]
}