3 matches found
CVE-2024-33836
In the module "JA Marketplace" jamarketplace up to version 9.0.1 from JA Module for PrestaShop, a guest can upload files with extensions .php. In version 6.X, the method JmarketplaceproductModuleFrontController::init and in version 8.X, the method...
CVE-2024-33836
In the module "JA Marketplace" jamarketplace up to version 9.0.1 from JA Module for PrestaShop, a guest can upload files with extensions .php. In version 6.X, the method JmarketplaceproductModuleFrontController::init and in version 8.X, the method...
CVE-2024-33836
The CVE-2024-33836 affects the JA Marketplace module for PrestaShop (jamarketplace) up to version 9.0.1. The vulnerability arises from the ability for guests to upload PHP files through the module, with vulnerable code paths in JA Marketplace 6.X (JmarketplaceproductModuleFrontController::init) a...