Filters

Versions

1.7.0.0
8
8.0.0
6
1.5.0.0
4
1.5.5.0
4
1.6.0.1
4
1.4.0.6
3
1.7.2.5
3
0.8.1
2
0.8.2
2
0.8.3
2
0.8.4
2
0.8.5
2
0.8.5.1
2
0.9
2
0.9.1-rc1
2
0.9.1-rc2
2
0.9.2
2
0.9.5
2
0.9.6
2
0.9.7
2
1.0
2
1.0.0.1
2
1.0.0.2
2
1.0.0.3
2
1.0.0.4
2
1.0.0.5
2
1.1.0.3
2
1.4.0.1
2
1.4.4.1
2
1.6
2
1.7
2
1.7.2.4
2
1.7.5.0
2
1.7.5.2
2
1.7.7.0
2
8.1.0
2
1.4
1
1.4.0.10
1
1.4.0.11
1
1.4.0.12
1
1.4.0.13
1
1.4.0.14
1
1.4.0.15
1
1.4.0.16
1
1.4.0.17
1
1.4.0.2
1
1.4.0.3
1
1.4.0.4
1
1.4.0.5
1
1.4.0.7
1
1.4.0.8
1
1.4.0.9
1
1.4.1.0
1
1.4.2.4
1
1.4.2.5
1
1.4.3.0
1
1.4.4.0
1
1.4.5.1
1
1.4.6.1
1
1.4.6.2
1
1.4.7.0
1
1.4.7.1
1
1.6.0.0
1
1.6.0.10
1
1.6.0.4
1
1.6.0.9
1
1.6.1.18
1
1.7.6.0-beta1
1
1.7.6.0-rc1
1
1.7.6.2
1
1.7.6.7
1
1.7.8.3
1
8.1.7
1

Prestashop PrestashopSSRF, Code Injection

critical
9.8
First published (updated )
CVE-2024-41651

composer/prestashop/prestashopXSS can be stored in DB from "add a message form" in order detail page (FO)

medium
6.1
EPSS
0.05%
First published (updated )
CVE-2024-21628

composer/prestashop/prestashopSome attribute not escaped in Validate::isCleanHTML method

high
8.1
EPSS
0.05%
First published (updated )
CVE-2024-21627

Prestashop PrestashopImproper Privilege Management in Prestashop

medium
6.3
First published (updated )
CVE-2023-43663

Prestashop PrestashopEmployee without any access rights can list all installed modules in Prestashop

medium
4.3
First published (updated )
CVE-2023-43664

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopPrestaShop vulnerable to file deletion via CustomerMessage

critical
9.1
First published (updated )
CVE-2023-39530

Prestashop PrestashopPrestaShop vulnerable to file deletion via attachment API

critical
9.1
First published (updated )
CVE-2023-39529

Prestashop PrestashopPrestaShop vulnerable to file reading through path traversal

high
8.6
First published (updated )
CVE-2023-39528

Prestashop PrestashopPrestaShop XSS vulnerability through Validate::isCleanHTML method

high
8.3
First published (updated )
CVE-2023-39527

Prestashop PrestashopPrestaShopSQL manager vulnerability (potential RCE)

critical
9.8
First published (updated )
CVE-2023-39526

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopPrestaShop vulnerable to path traversal

critical
9.1
First published (updated )
CVE-2023-39525

composer/prestashop/prestashopPrestaShop vulnerable to boolean SQL injection in search product in BO

critical
9.8
First published (updated )
CVE-2023-39524

Prestashop PrestashopSQL Injection

critical
9.8
First published (updated )
CVE-2023-30151

Prestashop PrestashopSQL Injection

critical
9.8
First published (updated )
CVE-2023-31672

Ebewe City AutocompleteSQL Injection

critical
9.8
First published (updated )
CVE-2023-30149

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopPrestaShop vulnerable to SQL filter bypass leading to arbitrary write requests using "SQL Manager"

critical
10
First published (updated )
CVE-2023-30839

Prestashop PrestashopPrestaShop vulnerable to possible XSS injection through Validate::isCleanHTML method

critical
9.9
First published (updated )
CVE-2023-30838

Prestashop PrestashopPrestaShop arbitrary file read vulnerability

high
7.7
First published (updated )
CVE-2023-30545

Prestashop PrestashopPrestaShop has possible CSRF token fixation

high
8.8
First published (updated )
CVE-2023-25170

Prestashop PrestashopPotential Information exposure in the upload directory in PrestaShop

medium
5.3
First published (updated )
CVE-2022-46158

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopRemote code execution in prestashop

critical
9.8
First published (updated )
CVE-2022-31181

Prestashop PrestashopXSS

medium
4.8
First published (updated )
CVE-2020-21967

Prestashop PrestashopServer Side Twig Template Injection in PrestaShop

critical
9.8
First published (updated )
CVE-2022-21686

Prestashop PrestashopXSS

medium
6.1
First published (updated )
CVE-2012-20001

Prestashop PrestashopBlind SQLi using Search filters in PrestaShop

critical
9.8
First published (updated )
CVE-2021-43789

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopPossible XSS injection through DataColumn Grid class

medium
5.4
First published (updated )
CVE-2021-21398

Prestashop PrestashopImproper session management for soft logout

critical
9.1
First published (updated )
CVE-2021-21308

Prestashop PrestashopCSV Injection via csv export

high
7.2
First published (updated )
CVE-2021-21302

Prestashop PrestashopSQL Injection

critical
9.8
First published (updated )
CVE-2021-3110

Prestashop PrestashopImproper Access Control in PrestaShop

high
7.5
First published (updated )
CVE-2020-26224

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopStored XSS in PrestaShop

medium
5.4
First published (updated )
CVE-2020-15162

Prestashop PrestashopBlind SQL Injection in PrestaShop

critical
9.8
First published (updated )
CVE-2020-15160

Prestashop PrestashopPotential XSS in PrestaShop

medium
6.1
First published (updated )
CVE-2020-15161

Prestashop PrestashopImproper Authentication

critical
10
First published (updated )
CVE-2020-4074

Prestashop PrestashopExternal control of configuration setting in the dashboard in PrestaShop

high
8.8
First published (updated )
CVE-2020-15082

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopReflected XSS when uploading an image in the Product page in PrestaShop

medium
6.1
First published (updated )
CVE-2020-15083

Prestashop PrestashopStored XSS in PrestaShop

medium
5.4
First published (updated )
CVE-2020-11074

Prestashop PrestashopImproper access control in PrestaShop

medium
6.4
First published (updated )
CVE-2020-15079

Prestashop PrestashopInformation disclosure in release archive in PrestaShop

medium
5.3
First published (updated )
CVE-2020-15080

Prestashop PrestashopInformation exposure in the upload directory in PrestaShop

medium
5.3
First published (updated )
CVE-2020-15081

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopReflected XSS related in import page in PrestaShop

medium
6.1
First published (updated )
CVE-2020-5286

Prestashop PrestashopImproper access control on customers search in PrestaShop

medium
6.5
First published (updated )
CVE-2020-5287

Prestashop PrestashopImproper access control on product attributes page in PrestaShop

medium
6.5
First published (updated )
CVE-2020-5288

Prestashop PrestashopImproper access control on product page with combinations, attachments and specific prices in PrestaShop

medium
6.5
First published (updated )
CVE-2020-5293

Prestashop PrestashopReflected XSS with dashboard calendar of PrestaShop

medium
6.1
First published (updated )
CVE-2020-5271

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Prestashop PrestashopReflected XSS on Search page of PrestaShop

medium
6.1
First published (updated )
CVE-2020-5272

Prestashop PrestashopReflected XSS on AdminCarts page of PrestaShop

medium
6.1
First published (updated )
CVE-2020-5276

Prestashop PrestashopReflected XSS on Exception page of PrestaShop

medium
6.1
First published (updated )
CVE-2020-5278

Prestashop PrestashopImproper Access Control for certain legacy controller in PrestaShop

medium
6.5
First published (updated )
CVE-2020-5279

Prestashop PrestashopReflected XSS with back parameter in PrestaShop

medium
6.1
First published (updated )
CVE-2020-5285

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203