Lucene search
MitreCVELIST:CVE-2024-36677HistoryJun 19, 2024 - 12:00 a.m.
CVE-2024-36677
2024-06-1900:00:00
mitre
www.cve.org
3
prestashop
insecure access
customer accounts
0.0004 Low
EPSS
Percentile
9.1%
In the module βLogin as customer PROβ (loginascustomerpro) <1.2.7 from Weblir for PrestaShop, a guest can access direct link to connect to each customer account of the Shop if the module is not installed OR if a secret accessible to administrator is stolen.
Related
cve
cve
CVE-2024-36677
2024-06-19 21:15:57
nvd
nvd
CVE-2024-36677
2024-06-19 21:15:57
vulnrichment
vulnrichment
CVE-2024-36677
2024-06-19 00:00:00