4 matches found
CVE-2023-46346
In the module "Product Catalog CSV, Excel, XML Export PRO" exportproducts in versions up to 4.1.1 from MyPrestaModules for PrestaShop, a guest can download personal information without restriction by performing a path traversal attack. Due to a lack of permissions control and a lack of control in...
CVE-2023-46346
In the module "Product Catalog CSV, Excel, XML Export PRO" exportproducts in versions up to 4.1.1 from MyPrestaModules for PrestaShop, a guest can download personal information without restriction by performing a path traversal attack. Due to a lack of permissions control and a lack of control in...
CVE-2023-46346
In the module "Product Catalog CSV, Excel, XML Export PRO" exportproducts in versions up to 4.1.1 from MyPrestaModules for PrestaShop, a guest can download personal information without restriction by performing a path traversal attack. Due to a lack of permissions control and a lack of control in...
CVE-2023-46346
The CVE-2023-46346 entry concerns the PrestaShop module “Product Catalog (CSV, Excel, XML) Export PRO” by MyPrestaModules, up to version 4.1.1. A path traversal flaw arises from lack of permissions control and flawed pathname construction, enabling a guest to view or download personal information...