Lucene search
MitreCVE-2024-24311HistoryFeb 07, 2024 - 9:15 a.m.
CVE-2024-24311
2024-02-0709:15:16
CWE-22
mitre
web.nvd.nist.gov
28
cve-2024-24311
path traversal
linea grafica
multilingual
multistore
sitemap pro
seo
prestashop
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
38.6%
Path Traversal vulnerability in Linea Grafica “Multilingual and Multistore Sitemap Pro - SEO” (lgsitemaps) module for PrestaShop before version 1.6.6, a guest can download personal information without restriction.
Affected configurations
Node
lineagraficamultilingual_and_multistore_sitemap_proRange<1.6.6prestashop
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lineagrafica | multilingual_and_multistore_sitemap_pro | * | cpe:2.3:a:lineagrafica:multilingual_and_multistore_sitemap_pro:*:*:*:*:*:prestashop:*:* |
Related
prion
prion
Path traversal
2024-02-07 09:15:00
cvelist
cvelist
CVE-2024-24311
2024-02-07 00:00:00
nvd
nvd
CVE-2024-24311
2024-02-07 09:15:16
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
38.6%
Related for CVE-2024-24311