Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2023/11/27 11:15 p.m.7 views

CVE-2023-46355

In the module "CSV Feeds PRO" csvfeeds 2.6.1 from Bl Modules for PrestaShop, a guest can download personal information without restriction. Due to too permissive access control which does not force administrator to use password on feeds, a guest can access exports from the module which can lead t...

5.3CVSS5.8AI score0.00501EPSS
Exploits0References2
OSV
OSV
added 2023/11/02 10:15 p.m.5 views

CVE-2023-46352

In the module "Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Module" facebookconversiontrackingplus up to version 2.4.9 from Smart Modules for PrestaShop, a guest can download personal information without restriction. Due to a lack of permissions control, a guest can access exports from...

7.5CVSS5.8AI score0.00475EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/11/02 12:0 a.m.5 views

PT-2023-29972 · Facebook · Pixel Plus: Events + Capi + Pixel Catalog For Facebook Module

Name of the Vulnerable Software and Affected Versions: Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Module version 2.4.9 Description: The issue is related to a lack of permissions control in the module, allowing a guest to download personal information without restriction. This can lead...

7.5CVSS6.9AI score0.00475EPSS
Exploits0References7
OSV
OSV
added 2021/10/05 1:15 p.m.1 views

UBUNTU-CVE-2021-39869

In all versions of GitLab CE/EE since version 8.9, project exports may expose trigger tokens configured on that project...

6.5CVSS6.6AI score0.01227EPSS
Exploits0References5
Rows per page
Query Builder