Get Demo
In the module Make an offer (makeanoffer) <= 1.7.1 from PrestaToolKit for PrestaShop, a guest can perform SQL injection via MakeOffers::checkUserExistingOffer()andMakeOffers::addUserOffer()` .
and