6 matches found
EUVD-2023-2354
Malicious code in bioql PyPI...
CVE-2023-39530
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, it is possible to delete files from the server via the CustomerMessage API. Version 8.1.1 contains a patch for this issue. There are no known workarounds...
BIT-PRESTASHOP-2023-39530 PrestaShop vulnerable to file deletion via CustomerMessage
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, it is possible to delete files from the server via the CustomerMessage API. Version 8.1.1 contains a patch for this issue. There are no known workarounds...
CVE-2023-39530 PrestaShop vulnerable to file deletion via CustomerMessage
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, it is possible to delete files from the server via the CustomerMessage API. Version 8.1.1 contains a patch for this issue. There are no known workarounds...
CVE-2023-39530
PrestaShop prior to 8.1.1 is affected by a vulnerability in the CustomerMessage API that allows deletion of server-side files. Root cause aligns with an input validation issue enabling file deletion. Impact is high (integrity/availability affected) as described in multiple advisories; exploitatio...
PrestaShop 输入验证错误漏洞
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides a variety of payment methods, short message alerts and product image scaling and other features. An input validation error vulnerability exists in versions of PrestaShop prior to...