Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

PayPal Official Module for PrestaShopPayPal Official Module for PrestaShop has Improperly Implemented Security Check for Standard

high
7.5
First published (updated )
CVE-2024-41670

AxeptioInfoleak

high
7.5
First published (updated )
CVE-2024-34991

Promokit.eu Theme settingsIn the module "Theme settings" (pk_themesettings) <= 1.8.8 from Promokit.eu for PrestaShop, a guest …

high
7.5
First published (updated )
CVE-2024-36682

FME Modules Help DeskSQL Injection

high
8.8
First published (updated )
CVE-2024-34992

Smart Modules Products AlertSQL Injection

high
7.3
First published (updated )
CVE-2024-36683

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Weblir Login as Customer PROIn the module "Login as customer PRO" (loginascustomerpro) <1.2.7 from Weblir for PrestaShop, a gues…

high
7.5
First published (updated )
CVE-2024-36677

PrestaShopAn issue was discovered in Common-Services "So Flexibilite" (soflexibilite) module for PrestaShop be…

high
7.5
EPSS
0.04%
First published (updated )
CVE-2024-25844

Tunis Soft Product DesignerPath Traversal

high
7.5
EPSS
0.04%
First published (updated )
CVE-2024-24307

Tunis Soft Product DesignerSSRF, CSRF

high
8.1
EPSS
0.04%
First published (updated )
CVE-2024-26469

ecgeneratebarcodeSQL Injection

high
8.8
EPSS
0.04%
First published (updated )
CVE-2024-24310

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ecomiz Survey TMAInfoleak

high
7.5
EPSS
0.04%
First published (updated )
CVE-2024-24309

composer/prestashop/prestashopSome attribute not escaped in Validate::isCleanHTML method

high
8.1
EPSS
0.05%
First published (updated )
CVE-2024-21627

composer/prestashop/blockreassurancePrestaShop blockreassurance BO User can remove any file from server when adding a and deleting a block

high
8.1
First published (updated )
CVE-2023-47109

composer/prestashop/prestashopPrestaShop vulnerable to file reading through path traversal

high
8.6
First published (updated )
CVE-2023-39528

composer/prestashop/prestashopPrestaShop XSS vulnerability through Validate::isCleanHTML method

high
8.3
First published (updated )
CVE-2023-39527

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PrestaShop ScexportcustomersPrestaShop scexportcustomers <= 3.6.1 is vulnerable to Incorrect Access Control. Due to a lack of pe…

high
7.5
First published (updated )
CVE-2023-30282

PrestashopPrestaShop arbitrary file read vulnerability

high
7.7
First published (updated )
CVE-2023-30545

PrestaShop Advanced ReviewsSQL Injection

high
8.8
First published (updated )
CVE-2023-25206

PrestashopPrestaShop has possible CSRF token fixation

high
8.8
First published (updated )
CVE-2023-25170

PrestaShop Xen ForumSQL Injection

high
8.8
First published (updated )
CVE-2023-24763

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PrestaShop Block WishlistSQL Injection in prestashop/blockwishlist

high
8.8
First published (updated )
CVE-2022-31101

PrestashopCSV Injection via csv export

high
7.2
First published (updated )
CVE-2021-21302

PrestaShop Product CommentsBlind SQL injection during the CommentGrade process

high
8.2
First published (updated )
CVE-2020-26248

PrestaShop Product CommentsReflected XSS in PrestaShop Product Comments

high
8.7
First published (updated )
CVE-2020-26225

PrestashopImproper Access Control in PrestaShop

high
7.5
First published (updated )
CVE-2020-26224

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PrestashopExternal control of configuration setting in the dashboard in PrestaShop

high
8.8
First published (updated )
CVE-2020-15082

PrestaShop Correos ExpressThe Correos Express addon for PrestaShop 1.6 through 1.7 allows remote attackers to obtain sensitive…

high
7.5
First published (updated )
CVE-2020-12120

PrestashopPossible information disclosure in PrestaShop

high
7.6
First published (updated )
CVE-2020-5250

PrestashopIn PrestaShop before 1.7.6.0 RC2, the id_address_delivery and id_address_invoice parameters are affe…

high
7.5
First published (updated )
CVE-2019-13461

composer/prestashop/prestashopCode Injection

high
8.8
First published (updated )
CVE-2018-20717

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203