CVE-2023-33664 | ai-dev aicombinationsonfly up to 0.3.0 on PrestaShop /includes/ajax.php sql injection (EUVD-2023-37820)
A vulnerability classified as critical has been found in ai-dev aicombinationsonfly up to 0.3.0 on PrestaShop. Affected is an unknown function of the file /includes/ajax.php. The manipulation leads to sql injection.
This vulnerability is traded as CVE-2023-33664. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.