7 matches found
CVE-2024-33836
In the module "JA Marketplace" jamarketplace up to version 9.0.1 from JA Module for PrestaShop, a guest can upload files with extensions .php. In version 6.X, the method JmarketplaceproductModuleFrontController::init and in version 8.X, the method...
CVE-2024-33836
In the module "JA Marketplace" jamarketplace up to version 9.0.1 from JA Module for PrestaShop, a guest can upload files with extensions .php. In version 6.X, the method JmarketplaceproductModuleFrontController::init and in version 8.X, the method...
CVE-2024-33836
In the module "JA Marketplace" jamarketplace up to version 9.0.1 from JA Module for PrestaShop, a guest can upload files with extensions .php. In version 6.X, the method JmarketplaceproductModuleFrontController::init and in version 8.X, the method...
PT-2024-25505 · Prestashop · Ja Marketplace
Name of the Vulnerable Software and Affected Versions: JA Marketplace module for PrestaShop versions up to 9.0.1 Description: The issue allows a guest to upload files with .php extensions, leading to a critical vulnerability. In version 6.X, the method JmarketplaceproductModuleFrontController::in...
CVE-2024-33836
The CVE-2024-33836 affects the JA Marketplace module for PrestaShop (jamarketplace) up to version 9.0.1. The vulnerability arises from the ability for guests to upload PHP files through the module, with vulnerable code paths in JA Marketplace 6.X (JmarketplaceproductModuleFrontController::init) a...
PrestaShop Security Breach
PrestaShop is an open source e-commerce solution from the American company PrestaShop. The solution provides multiple payment methods, short message alerts and product image scaling. A security vulnerability exists in PrestaShop JA Marketplace version 9.0.1 and earlier, which stems from allowing...
CVE-2024-33836
In the module "JA Marketplace" jamarketplace up to version 9.0.1 from JA Module for PrestaShop, a guest can upload files with extensions .php. In version 6.X, the method JmarketplaceproductModuleFrontController::init and in version 8.X, the method...