Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 1:14 a.m.17 views

CVE-2022-21686

PrestaShop is an Open Source e-commerce platform. Starting with version 1.7.0.0 and ending with version 1.7.8.3, an attacker is able to inject twig code inside the back office when using the legacy layout. The problem is fixed in version 1.7.8.3. There are no known workarounds...

9.8CVSS6.8AI score0.01786EPSS
Exploits0References1
OSV
OSV
added 2022/01/26 8:10 p.m.34 views

CVE-2022-21686 Server Side Twig Template Injection in PrestaShop

PrestaShop is an Open Source e-commerce platform. Starting with version 1.7.0.0 and ending with version 1.7.8.3, an attacker is able to inject twig code inside the back office when using the legacy layout. The problem is fixed in version 1.7.8.3. There are no known workarounds...

9CVSS9.2AI score0.01786EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/01/26 8:10 p.m.51 views

CVE-2022-21686 Server Side Twig Template Injection in PrestaShop

PrestaShop is an Open Source e-commerce platform. Starting with version 1.7.0.0 and ending with version 1.7.8.3, an attacker is able to inject twig code inside the back office when using the legacy layout. The problem is fixed in version 1.7.8.3. There are no known workarounds...

9CVSS9.6AI score0.01786EPSS
Exploits0References3
CVE
CVE
added 2022/01/26 8:10 p.m.175 views

CVE-2022-21686

CVE-2022-21686 concerns PrestaShop, an open-source e-commerce platform. A vulnerability affects versions 1.7.0.0 through 1.7.8.3 where an attacker can inject Twig code into the back office when using the legacy layout, enabling code injection. The issue is fixed in 1.7.8.3. No public workarounds ...

9.8CVSS9.2AI score0.01786EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder