Duplicate Advisory

This advisory is a duplicate of GHSA-hrgx-p36p-89q4. This link is maintained to preserve external references.

Original Description

PrestaShop 1.6.0.10 through 1.7.x before 1.7.8.2 allows remote attackers to execute arbitrary code, aka a "previously unknown vulnerability chain" related to SQL injection, as exploited in the wild in July 2022.