4 matches found
CVE-2023-46355
In the module "CSV Feeds PRO" csvfeeds 2.6.1 from Bl Modules for PrestaShop, a guest can download personal information without restriction. Due to too permissive access control which does not force administrator to use password on feeds, a guest can access exports from the module which can lead t...
CVE-2023-46352
In the module "Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Module" facebookconversiontrackingplus up to version 2.4.9 from Smart Modules for PrestaShop, a guest can download personal information without restriction. Due to a lack of permissions control, a guest can access exports from...
PT-2023-29972 · Facebook · Pixel Plus: Events + Capi + Pixel Catalog For Facebook Module
Name of the Vulnerable Software and Affected Versions: Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Module version 2.4.9 Description: The issue is related to a lack of permissions control in the module, allowing a guest to download personal information without restriction. This can lead...
UBUNTU-CVE-2021-39869
In all versions of GitLab CE/EE since version 8.9, project exports may expose trigger tokens configured on that project...