PT-2023-27067 · Prestashop · Simpleimportproduct Prestashop Module +1

Name of the Vulnerable Software and Affected Versions: FieldPopupNewsletter Prestashop Module version 1.0.0 SimpleImportProduct Prestashop Module version 1.0.0 Description: A reflected cross-site scripting XSS issue was discovered in the Prestashop modules. The vulnerability is exploited via the...

Zen Cart Arbitrary File Inclusion Vulnerability

Zen Cart is open source shopping cart software. An arbitrary file inclusion vulnerability exists in Zen Cart. Due to a lack of filtering in the "/ajax.php" script directory traversal sequence in the "act" HTTP GET parameter, an attacker can exploit the vulnerability to execute arbitrary PHP code...