First published: Wed Jul 13 2022(Updated: )
File upload vulnerability in the Catalog feature in Prestashop 1.7.6.7 allows remote attackers to run arbitrary code via the add new file page.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Prestashop Prestashop | =1.7.6.7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2020-21967.
The severity of CVE-2020-21967 is medium.
The vulnerability allows remote attackers to run arbitrary code via the add new file page in Prestashop 1.7.6.7.
Prestashop 1.7.6.7 is affected by this file upload vulnerability.
At the time of writing, there are no known fixes for CVE-2020-21967. It is recommended to update to the latest version of Prestashop and apply any patches provided by the vendor.