Lucene search
K

5 matches found

OSV
OSV
added 2023/09/20 10:15 a.m.3 views

CVE-2022-45447

M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to a directory traversal vulnerability. The “f” parameter is not properly checked in the resource /m4pdf/pdf.php, returning any file given its relative path. An attacker that exploits this vulnerability could...

6.5CVSS5.8AI score0.00713EPSS
Exploits0References1
NVD
NVD
added 2023/09/20 10:15 a.m.21 views

CVE-2022-45447

M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to a directory traversal vulnerability. The “f” parameter is not properly checked in the resource /m4pdf/pdf.php, returning any file given its relative path. An attacker that exploits this vulnerability could...

6.5CVSS6.4AI score0.00713EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/20 9:30 a.m.10 views

CVE-2022-45447 Path Traversal in M4 PDF plugin for Prestashop sites

M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to a directory traversal vulnerability. The “f” parameter is not properly checked in the resource /m4pdf/pdf.php, returning any file given its relative path. An attacker that exploits this vulnerability could...

6.5CVSS6.8AI score0.00713EPSS
Exploits0References1
CVE
CVE
added 2023/09/20 9:30 a.m.36 views

CVE-2022-45447

The CVE-2022-45447 entry describes a directory-traversal vulnerability in the M4 PDF plugin for Prestashop (versions 3.2.3 and earlier). The flaw resides in the f parameter handling of the /m4pdf/pdf.php resource, which does not properly validate the requested relative path, enabling an attacker ...

6.5CVSS6.4AI score0.00713EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/20 9:30 a.m.21 views

CVE-2022-45447 Path Traversal in M4 PDF plugin for Prestashop sites

M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to a directory traversal vulnerability. The “f” parameter is not properly checked in the resource /m4pdf/pdf.php, returning any file given its relative path. An attacker that exploits this vulnerability could...

6.5CVSS6.6AI score0.00713EPSS
Exploits0References1
Rows per page
Query Builder