Lucene search
K

5 matches found

CVE
CVE
added 2014/09/12 2:0 p.m.64 views

CVE-2014-2009

The CVE-2014-2009 entry concerns the mPAY24 payment module for PrestaShop prior to version 1.6. A vulnerability allows remote attackers to obtain credentials, installation path, and other sensitive information via a direct request to api/curllog.log. This is described as an information-disclosure...

5CVSS6.3AI score0.0741EPSS
Exploits5References6Affected Software1
exploitpack
exploitpack
added 2014/09/08 12:0 a.m.39 views

Mpay24 PrestaShop Payment Module 1.5 - Multiple Vulnerabilities

Mpay24 PrestaShop Payment Module 1.5 - Multiple Vulnerabilities Mpay24 PrestaShop Payment Module Multiple Vulnerabilities - · Affected Vendor: Mpay24 - · Affected Software: Mpay24 Payment Module - · Affected Version: 1.5 and earlier - · Issue Type: SQL injection and information disclosure - ·...

7.5CVSS0.1AI score0.0741EPSS
Exploits6
Exploit DB
Exploit DB
added 2014/09/08 12:0 a.m.75 views

Mpay24 PrestaShop Payment Module 1.5 - Multiple Vulnerabilities

Mpay24 PrestaShop Payment Module Multiple Vulnerabilities - · Affected Vendor: Mpay24 - · Affected Software: Mpay24 Payment Module - · Affected Version: 1.5 and earlier - · Issue Type: SQL injection and information disclosure - · Notification Date: 10 February 2014 - · Release Date: 03 September...

7.5CVSS7AI score0.0741EPSS
Exploits6
0day.today
0day.today
added 2014/09/04 12:0 a.m.90 views

Mpay24 Payment Module 1.5 Information Disclosure / SQL Injection Mpay24 Payment Module 1.5 Informat

Mpay24 Payment Module versions 1.5 and below suffer from information disclosure and remote SQL injection vulnerabilities. Mpay24 PrestaShop Payment Module Multiple Vulnerabilities - · Affected Vendor: Mpay24 - · Affected Software: Mpay24 Payment Module - · Affected Version: 1.5 and earlier - ·...

7.5CVSS0.2AI score0.0741EPSS
Exploits6
Packet Storm
Packet Storm
added 2014/09/03 12:0 a.m.57 views

Mpay24 Payment Module 1.5 Information Disclosure / SQL Injection

Mpay24 PrestaShop Payment Module Multiple Vulnerabilities - · Affected Vendor: Mpay24 - · Affected Software: Mpay24 Payment Module - · Affected Version: 1.5 and earlier - · Issue Type: SQL injection and information disclosure - · Notification Date: 10 February 2014 - · Release Date: 03 September...

7.5CVSS6.6AI score0.0741EPSS
Exploits6
Rows per page
Query Builder