What is the severity of CVE-2011-4544?

CVE-2011-4544 is classified as a somewhat high severity vulnerability due to its potential for cross-site scripting attacks.

How do I fix CVE-2011-4544?

To fix CVE-2011-4544, upgrade to Prestashop version 1.5 or later which includes patches for these vulnerabilities.

What are the affected versions for CVE-2011-4544?

CVE-2011-4544 affects multiple versions of Prestashop including versions from 0.8.1 up to 1.4.

What types of attacks does CVE-2011-4544 allow?

CVE-2011-4544 allows attackers to exploit cross-site scripting (XSS) by injecting arbitrary scripts into affected Prestashop installations.

Can CVE-2011-4544 be exploited remotely?

Yes, CVE-2011-4544 can be exploited remotely, allowing attackers to execute scripts in the context of affected users.

Vulnerability/
CVE-2011-4544

medium

4.3

CWE

1/12/2011

7/8/2024

CVE-2011-4544: XSS

First published: Thu Dec 01 2011(Updated: )

Multiple cross-site scripting (XSS) vulnerabilities in Prestashop before 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) address or (2) relativ_base_dir parameter to modules/mondialrelay/googlemap.php; the (3) relativ_base_dir, (4) Pays, (5) Ville, (6) CP, (7) Poids, (8) Action, or (9) num parameter to prestashop/modules/mondialrelay/googlemap.php; (10) the num_mode parameter to modules/mondialrelay/kit_mondialrelay/RechercheDetailPointRelais_ajax.php; (11) the Expedition parameter to modules/mondialrelay/kit_mondialrelay/SuiviExpedition_ajax.php; or the (12) folder or (13) name parameter to admin/ajaxfilemanager/ajax_save_text.php.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Prestashop	=0.9.1-rc2
Prestashop	=0.8.4
Prestashop	=1.4
Prestashop	=1.0.0.3
Prestashop	=0.9.5
Prestashop	=0.9.7
Prestashop	=0.9.2
Prestashop	=1.0.0.2
Prestashop	=0.8.3
Prestashop	<=1.4.0.6
Prestashop	=0.8.1
Prestashop	=1.0.0.5
Prestashop	=0.8.5
Prestashop	=0.9
Prestashop	=0.9.1-rc1
Prestashop	=0.8.2
Prestashop	=1.0.0.4
Prestashop	=1.0
Prestashop	=1.1.0.3
Prestashop	=1.0.0.1
Prestashop	=0.9.6
Prestashop	=0.8.5.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-4544?
CVE-2011-4544 is classified as a somewhat high severity vulnerability due to its potential for cross-site scripting attacks.
How do I fix CVE-2011-4544?
To fix CVE-2011-4544, upgrade to Prestashop version 1.5 or later which includes patches for these vulnerabilities.
What are the affected versions for CVE-2011-4544?
CVE-2011-4544 affects multiple versions of Prestashop including versions from 0.8.1 up to 1.4.
What types of attacks does CVE-2011-4544 allow?
CVE-2011-4544 allows attackers to exploit cross-site scripting (XSS) by injecting arbitrary scripts into affected Prestashop installations.
Can CVE-2011-4544 be exploited remotely?
Yes, CVE-2011-4544 can be exploited remotely, allowing attackers to execute scripts in the context of affected users.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/severity
agent/references
agent/description
agent/first-publish-date
agent/event
agent/source
agent/weakness
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/prestashop
canonical/prestashop
version/prestashop/1.4.0.6
version/prestashop/0.8.1
version/prestashop/0.8.2
version/prestashop/0.8.3
version/prestashop/0.8.4
version/prestashop/0.8.5
version/prestashop/0.8.5.1
version/prestashop/0.9
version/prestashop/0.9.1-rc1
version/prestashop/0.9.1-rc2
version/prestashop/0.9.2
version/prestashop/0.9.5
version/prestashop/0.9.6
version/prestashop/0.9.7
version/prestashop/1.0
version/prestashop/1.0.0.1
version/prestashop/1.0.0.2
version/prestashop/1.0.0.3
version/prestashop/1.0.0.4
version/prestashop/1.0.0.5
version/prestashop/1.1.0.3
version/prestashop/1.4