Filter

Prestashop PrestashopSSRF, Code Injection

First published (updated )

composer/prestashop/prestashopXSS can be stored in DB from "add a message form" in order detail page (FO)

EPSS
0.05%
First published (updated )

composer/prestashop/prestashopSome attribute not escaped in Validate::isCleanHTML method

8.1
EPSS
0.05%
First published (updated )

Prestashop PrestashopImproper Privilege Management in Prestashop

First published (updated )

Prestashop PrestashopEmployee without any access rights can list all installed modules in Prestashop

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop PrestashopPrestaShop vulnerable to file deletion via CustomerMessage

First published (updated )

Prestashop PrestashopPrestaShop vulnerable to file deletion via attachment API

First published (updated )

Prestashop PrestashopPrestaShop vulnerable to file reading through path traversal

8.6
First published (updated )

Prestashop PrestashopPrestaShop XSS vulnerability through Validate::isCleanHTML method

8.3
First published (updated )

Prestashop PrestashopPrestaShopSQL manager vulnerability (potential RCE)

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop PrestashopPrestaShop vulnerable to path traversal

First published (updated )

composer/prestashop/prestashopPrestaShop vulnerable to boolean SQL injection in search product in BO

First published (updated )

Prestashop PrestashopSQL Injection

First published (updated )

Prestashop PrestashopSQL Injection

First published (updated )

Ebewe City AutocompleteSQL Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop PrestashopPrestaShop vulnerable to SQL filter bypass leading to arbitrary write requests using "SQL Manager"

First published (updated )

Prestashop PrestashopPrestaShop vulnerable to possible XSS injection through Validate::isCleanHTML method

First published (updated )

Prestashop PrestashopPrestaShop arbitrary file read vulnerability

7.7
First published (updated )

Prestashop PrestashopPrestaShop has possible CSRF token fixation

8.8
First published (updated )

Prestashop PrestashopPotential Information exposure in the upload directory in PrestaShop

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop PrestashopRemote code execution in prestashop

First published (updated )

Prestashop PrestashopXSS

First published (updated )

Prestashop PrestashopServer Side Twig Template Injection in PrestaShop

First published (updated )

Prestashop PrestashopXSS

First published (updated )

Prestashop PrestashopBlind SQLi using Search filters in PrestaShop

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop PrestashopPossible XSS injection through DataColumn Grid class

First published (updated )

Prestashop PrestashopImproper session management for soft logout

First published (updated )

Prestashop PrestashopCSV Injection via csv export

7.2
First published (updated )

Prestashop PrestashopSQL Injection

First published (updated )

Prestashop PrestashopImproper Access Control in PrestaShop

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203