External risk intelligence

PrestaShop OpartSaveCart SQL Injection Vulnerability.

CVE advisorySeverity: CRITICAL (CVSS 9.8)

CVE-2023-34575

A SQL injection vulnerability exists in the op'art save cart module for PrestaShop, allowing remote attackers to execute arbitrary SQL commands. This could potentially impact e-commerce platform data integrity and availability through crafted requests. Confirm relevance and exposure of this module across your deploymen

4Halo Surface Signal

SQL Injection

Store Opart Op\'art Save Cart

2.0.7 and earlier

External exposure likelihood

Halo Surface Signal score for CVE-2023-34575

This is a vulnerability in a PrestaShop module, which is an e-commerce platform component. PrestaShop modules are typically deployed within public-facing web stores to provide storefront functionality, making them directly reachable over the internet as part of the web application's standard operation.

PCI scan relevance

PCI Relevance for CVE-2023-34575

Yes

CVE-2023-34575 — Halo PCI Relevance: Yes. Under typical PCI ASV external scan criteria, this issue may be flagged for scan prioritization.

This SQL injection vulnerability in PrestaShop op'art_save_cart allows remote attackers to execute arbitrary SQL commands, which would likely cause a PCI ASV scan failure.

Scan-prioritization guidance only—not a PCI DSS certification or ASV attestation.

Horizon Alert

Summary of the vulnerability and why it matters

A critical vulnerability has been identified in the op'art save cart module for PrestaShop, potentially allowing unauthorized remote attackers to execute arbitrary commands. This issue impacts how cart data is handled and could have broad implications for systems using this specific module.

Allows remote attackers to run commands.
Matters because it affects e-commerce platforms.
Confirm relevance and exposure of this module.

Attack Path

How an attacker could exploit the issue

An unauthenticated attacker could target the `opart_save_cart` PrestaShop module to inject malicious SQL commands. By interacting with specific controller methods, an attacker could potentially execute arbitrary SQL, leading to data compromise or manipulation.

No authentication required.
Triggered via specific module methods.
Risk of arbitrary SQL execution.

Live Threat

Current exploitation, exposure, and threat context

When supported by the advisory, remote attackers could execute arbitrary SQL commands by exploiting this vulnerability through specific controller methods in the op'art save cart module. This could potentially affect the integrity and availability of the e-commerce platform.

E-commerce platform data.
Via crafted requests to controller methods.
Unauthorized data access or modification.

Priority actions

Operational Fix

Recommended remediation, mitigation, and detection steps

Action on this SQL injection vulnerability in the PrestaShop opartsavecart module likely falls to application owners and platform teams responsible for the e-commerce site. The immediate first step is to identify all instances of this module across your PrestaShop deployments, confirm their internet reachability, and assess their business criticality to prioritize remediation efforts.

Identify module instances and owners.
Verify reachability and business criticality.
Plan remediation based on risk.

Frequently asked questions

What is the op'art save cart module for PrestaShop?

The op'art save cart module is a software extension for the PrestaShop e-commerce platform. It is designed to add specific functionality to online stores, typically allowing customers to save their shopping cart contents for later use. Because it integrates directly into the storefront, it handles data processing tasks as part of the normal operation of an online shop.

What does SQL injection mean for CVE-2023-34575?

This vulnerability is classified as CWE-89, or Improper Neutralization of Special Elements used in an SQL Command. In plain English, the module fails to properly filter the data it receives before using it in database queries. This allows an attacker to inject their own malicious SQL commands into the application's communication with the database, potentially enabling them to read, modify, or delete sensitive store data.

How can an attacker trigger this vulnerability?

An attacker triggers this flaw by sending specifically crafted requests to the initContent or displayAjaxSendCartByEmail controller methods within the module. No authentication or login is required to attempt this, meaning anyone capable of reaching the web page where the module operates can potentially send these requests. The bug is not triggered by standard, benign interaction with the cart features, but specifically by malicious input targeting these functions.

Why should I care about this if my store uses this module?

According to Halo Surface Signal, this module is typically deployed on public-facing web stores to provide essential storefront functionality. Because these stores are meant to be accessed by customers over the internet, the vulnerability is directly reachable by remote actors. This means your shop's database may be exposed to unauthorized command execution if the module remains unpatched.

What is the first step to address this issue?

You should begin by performing an inventory of your PrestaShop environment to locate every instance of the op'art save cart module, ensuring you check all sites and development environments. Once identified, verify which instances are accessible to the public and determine their importance to your operations. This will help you effectively prioritize which installations need attention first as you move toward applying the necessary security updates.

References

security.friendsofpresta.org/modules/2023/09/19/opartsavecart.html

Written by Nicholas Merritt

External-surface CVE analysis and Halo Surface Signal prioritization for Halo Threat Intelligence.