Filter

Prestashop PrestashopSSRF, Code Injection

First published (updated )

Prestashop Pk CustomlinksSQL Injection

First published (updated )

Prestashop Advanced Loyalty ProgramAn issue in 202 ecommerce Advanced Loyalty Program: Loyalty Points before v2.3.4 for PrestaShop allo…

First published (updated )

composer/prestashop/prestashopXSS can be stored in DB from "add a message form" in order detail page (FO)

EPSS
0.05%
First published (updated )

composer/prestashop/prestashopSome attribute not escaped in Validate::isCleanHTML method

8.1
EPSS
0.05%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

composer/prestashop/blockreassuranceAny value can be changed in the configuration table by an employee having access to block reassurance module

First published (updated )

composer/prestashop/blockreassurancePrestaShop blockreassurance BO User can remove any file from server when adding a and deleting a block

8.1
First published (updated )

Prestashop OpartlimitquantitySQL Injection

First published (updated )

Prestashop PrestashopImproper Privilege Management in Prestashop

First published (updated )

Prestashop PrestashopEmployee without any access rights can list all installed modules in Prestashop

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop M4 PdfCross-site Scripting in M4 PDF plugin for Prestashop sites

First published (updated )

Prestashop M4 PdfPath Traversal in M4 PDF plugin for Prestashop sites

First published (updated )

Prestashop PrestashopPrestaShop vulnerable to file deletion via CustomerMessage

First published (updated )

Prestashop PrestashopPrestaShop vulnerable to file deletion via attachment API

First published (updated )

Prestashop PrestashopPrestaShop vulnerable to file reading through path traversal

8.6
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop PrestashopPrestaShop XSS vulnerability through Validate::isCleanHTML method

8.3
First published (updated )

Prestashop PrestashopPrestaShopSQL manager vulnerability (potential RCE)

First published (updated )

Prestashop PrestashopPrestaShop vulnerable to path traversal

First published (updated )

composer/prestashop/prestashopPrestaShop vulnerable to boolean SQL injection in search product in BO

First published (updated )

Prestashop amazonPath Traversal

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop PayplugSQL Injection

First published (updated )

Prestashop PrestashopSQL Injection

First published (updated )

Prestashop PrestashopSQL Injection

First published (updated )

Ebewe City AutocompleteSQL Injection

First published (updated )

Prestashop PossearchproductsSQL Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Prestashop PoststaticfooterSQL Injection

First published (updated )

Prestashop ScexportcustomersPrestaShop scexportcustomers <= 3.6.1 is vulnerable to Incorrect Access Control. Due to a lack of pe…

7.5
First published (updated )

Prestashop PrestashopPrestaShop vulnerable to SQL filter bypass leading to arbitrary write requests using "SQL Manager"

First published (updated )

Prestashop PrestashopPrestaShop vulnerable to possible XSS injection through Validate::isCleanHTML method

First published (updated )

Prestashop PrestashopPrestaShop arbitrary file read vulnerability

7.7
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203