PT-2024-21150 · Webbax · Super Newsletter

Name of the Vulnerable Software and Affected Versions: PrestaShop versions 1.4.21 and earlier Description: An issue was discovered in the Webbax "Super Newsletter" module, allowing local attackers to escalate privileges and obtain sensitive information. Recommendations: For PrestaShop versions...

CVE-2023-30197

Incorrect Access Control in the module "My inventory" myinventory = 1.6.6 from Webbax for PrestaShop, allows a guest to download personal information without restriction by performing a path traversal attack...