CVE-2013-6358
PrestaShop 1.5.5 is affected: remote authenticated attackers can execute arbitrary code by uploading a crafted profile and then accessing it under the module/ directory. Root cause is improper handling of uploaded profiles allowing code execution. Impact is high (remote code execution) per CVE re...