Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2024/03/03 9:15 a.m.2 views

CVE-2024-25847

SQL Injection vulnerability in MyPrestaModules "Product Catalog CSV, Excel Import" simpleimportproduct modules for PrestaShop versions 6.5.0 and before, allows attackers to escalate privileges and obtain sensitive information via Send::construct and importProducts::addDataToDb methods...

9.8CVSS5.8AI score0.00054EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/03/03 12:0 a.m.3 views

PrestaShop Security Breach

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, SMS alerts and product image zoom. A security vulnerability exists in PrestaShop Product Catalog CSV, Excel Import prior to version 6.5.0, which stems from a...

9.8CVSS6.6AI score0.00054EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/03/03 12:0 a.m.14 views

CVE-2024-25847

SQL Injection vulnerability in MyPrestaModules "Product Catalog CSV, Excel Import" simpleimportproduct modules for PrestaShop versions 6.5.0 and before, allows attackers to escalate privileges and obtain sensitive information via Send::construct and importProducts::addDataToDb methods...

7.8AI score0.00054EPSS
Exploits0References1
OSV
OSVadded 2024/02/27 5:15 p.m.0 views

CVE-2024-25846

In the module "Product Catalog CSV, Excel Import" simpleimportproduct = 6.7.0 from MyPrestaModules for PrestaShop, a guest can upload files with extensions .php...

9.1CVSS5.8AI score0.0015EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/02/27 12:0 a.m.13 views

CVE-2024-25846

In the module "Product Catalog CSV, Excel Import" simpleimportproduct = 6.7.0 from MyPrestaModules for PrestaShop, a guest can upload files with extensions .php...

7AI score0.0015EPSS
Exploits1References2
CNNVD
CNNVDadded 2024/02/27 12:0 a.m.4 views

PrestaShop Security Breach

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image scaling. A security vulnerability exists in PrestaShop simpleimportproduct 6.7.0 and earlier versions, which stems fr...

9.1CVSS6.9AI score0.0015EPSS
Exploits1References3
OSV
OSVadded 2024/01/04 10:15 a.m.2 views

CVE-2023-6944

A flaw was found in the Red Hat Developer Hub RHDH. The catalog-import function leaks GitLab access tokens on the frontend when the base64 encoded GitLab token includes a newline at the end of the string. The sanitized error can display on the frontend, including the raw access token. Upon gainin...

5.7CVSS5.5AI score0.00216EPSS
Exploits0References3
OSV
OSVadded 2018/08/14 4:29 p.m.2 views

CVE-2018-2449

SAP SRM MDM Catalog versions 3.73, 7.31, 7.32 in SAP NetWeaver 7.3 - import functionality does not perform authentication checks for valid repository user. This is an unauthenticated functionality that you can use on windows machines to do SMB relaying...

8.6CVSS5.8AI score
Exploits0References3
Rows per page
Query Builder