Filters
Software
prestashop prestashop
87
prestashop customer reassurance block
2
prestashop eo tags
2
prestashop m4 pdf
2
prestashop productcomments
2
prestashop advanced loyalty program
1
prestashop advanced reviews
1
prestashop amazon
1
prestashop blockwishlist
1
prestashop contactform
1
prestashop correos express
1
prestashop dashboard products
1
prestashop dpd france
1
prestashop ebay
1
prestashop ebay module
1
prestashop faceted search module
1
prestashop opartlimitquantity
1
prestashop payplug
1
prestashop pk customlinks
1
prestashop possearchproducts
1
prestashop poststaticfooter
1
prestashop prestashop link
1
prestashop prestashop linklist
1
prestashop prestashop socialfollow
1
prestashop product comments
1
prestashop ps emailsubscription
1
prestashop scexportcustomers
1
prestashop xen forum
1
Prestashop Advanced Loyalty ProgramAn issue in 202 ecommerce Advanced Loyalty Program: Loyalty Points before v2.3.4 for PrestaShop alloâŚ
5.3
First published (updated )
composer/prestashop/prestashopXSS can be stored in DB from "add a message form" in order detail page (FO)
6.1
EPSS
0.05%
First published (updated )
composer/prestashop/prestashopSome attribute not escaped in Validate::isCleanHTML method
8.1
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Prestashop Customer Reassurance BlockAny value can be changed in the configuration table by an employee having access to block reassurance module
9.1
First published (updated )
composer/prestashop/blockreassurancePrestaShop blockreassurance BO User can remove any file from server when adding a and deleting a block
8.1
First published (updated )
Prestashop PrestashopImproper Privilege Management in Prestashop
6.3
First published (updated )
Prestashop PrestashopEmployee without any access rights can list all installed modules in Prestashop
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Prestashop M4 PdfCross-site Scripting in M4 PDF plugin for Prestashop sites
6.1
First published (updated )
Prestashop M4 PdfPath Traversal in M4 PDF plugin for Prestashop sites
6.5
First published (updated )
Prestashop PrestashopPrestaShop vulnerable to file deletion via CustomerMessage
9.1
First published (updated )
Prestashop PrestashopPrestaShop vulnerable to file deletion via attachment API
9.1
First published (updated )
Prestashop PrestashopPrestaShop vulnerable to file reading through path traversal
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Prestashop PrestashopPrestaShop XSS vulnerability through Validate::isCleanHTML method
8.3
First published (updated )
Prestashop PrestashopPrestaShopSQL manager vulnerability (potential RCE)
9.8
First published (updated )
Prestashop PrestashopPrestaShop vulnerable to path traversal
9.1
First published (updated )
composer/prestashop/prestashopPrestaShop vulnerable to boolean SQL injection in search product in BO
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Prestashop ScexportcustomersPrestaShop scexportcustomers <= 3.6.1 is vulnerable to Incorrect Access Control. Due to a lack of peâŚ
7.5
First published (updated )
Prestashop PrestashopPrestaShop vulnerable to SQL filter bypass leading to arbitrary write requests using "SQL Manager"
10
First published (updated )
Prestashop PrestashopPrestaShop vulnerable to possible XSS injection through Validate::isCleanHTML method
9.9
First published (updated )
Prestashop PrestashopPrestaShop arbitrary file read vulnerability
7.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Prestashop PrestashopPrestaShop has possible CSRF token fixation
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Prestashop PrestashopPotential Information exposure in the upload directory in PrestaShop
5.3
First published (updated )
Prestashop ProductcommentsPrestaShop module Product Comments vulnerable to cross-site scripting (XSS)
6.1
First published (updated )
Prestashop PrestashopRemote code execution in prestashop
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Prestashop BlockwishlistSQL Injection in prestashop/blockwishlist
8.8
First published (updated )
Prestashop PrestashopServer Side Twig Template Injection in PrestaShop
9.8
First published (updated )
Prestashop PrestashopBlind SQLi using Search filters in PrestaShop
9.8
First published (updated )
Prestashop Ps EmailsubscriptionPotential XSS injection in the newsletter conditions field
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Prestashop PrestashopPossible XSS injection through DataColumn Grid class
5.4
First published (updated )
Prestashop PrestashopImproper session management for soft logout
9.1
First published (updated )
Prestashop ProductcommentsBlind SQL injection during the CommentGrade process
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.