CVE-2018-19124
PrestaShop CVE-2018-19124 affects PrestaShop 1.6.x (before 1.6.1.23) and 1.7.x (before 1.7.4.4) on Windows. The issue allows remote attackers to write to arbitrary image files. Remediation: upgrade to PrestaShop 1.6.1.23 or 1.7.4.4, as referenced in the maintenance releases.