Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:20 a.m.5 views

CVE-2022-46158

PrestaShop is an open-source e-commerce solution. Versions prior to 1.7.8.8 did not properly restrict host filesystem access for users. Users may have been able to view the contents of the upload directory without appropriate permissions. This issue has been addressed and users are advised to...

5.3CVSS6.8AI score0.00456EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/20 7:35 a.m.11 views

CVE-2024-38696 WordPress Zoho CRM Lead Magnet plugin <= 1.7.8.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Zoho CRM Zoho CRM Lead Magnet allows Reflected XSS.This issue affects Zoho CRM Lead Magnet: from n/a through 1.7.8.8...

7.1CVSS7AI score0.0032EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/20 12:0 a.m.3 views

PT-2024-28140 · Zoho · Zoho Crm Lead Magnet

Name of the Vulnerable Software and Affected Versions: Zoho CRM Lead Magnet versions 1.7.8.8 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS in Zoho CRM Lead Magnet...

7.1CVSS5.5AI score0.0032EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/07/11 10:3 a.m.4 views

WordPress Zoho CRM Lead Magnet plugin <= 1.7.8.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Zoho CRM Lead Magnet versions = 1.7.8.8...

7.1CVSS6.1AI score0.0032EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/08 9:50 p.m.9 views

CVE-2022-46158 Potential Information exposure in the upload directory in PrestaShop

PrestaShop is an open-source e-commerce solution. Versions prior to 1.7.8.8 did not properly restrict host filesystem access for users. Users may have been able to view the contents of the upload directory without appropriate permissions. This issue has been addressed and users are advised to...

5.3CVSS5.3AI score0.00456EPSS
Exploits0References2
OSV
OSV
added 2022/12/08 4:11 p.m.21 views

GHSA-9QGP-9WWC-V29R PrestaShop has potential Information exposure in the upload directory

Impact Potential Information exposure in the upload directory. Patches Patch in PrestaShop 1.7.8.8 References https://capec.mitre.org/data/definitions/87.html Thanks to DZPATROL...

5.3CVSS4.7AI score0.00456EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/12/08 12:0 a.m.7 views

PT-2022-27775 · Unknown · Prestashop

Name of the Vulnerable Software and Affected Versions: PrestaShop versions prior to 1.7.8.8 Description: PrestaShop is an open-source e-commerce solution where versions prior to 1.7.8.8 did not properly restrict host filesystem access for users. This could allow users to view the contents of the...

5.3CVSS4.6AI score0.00456EPSS
Exploits0References10
CNNVD
CNNVD
added 2022/12/08 12:0 a.m.37 views

PrestaShop 信息泄露漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image scaling. An information disclosure vulnerability exists in PrestaShop versions prior to 1.7.8.8. The vulnerability...

5.3CVSS5.3AI score0.00456EPSS
Exploits0References3
Rows per page
Query Builder