15 matches found
EUVD-2023-48343
Malicious code in bioql PyPI...
CVE-2024-33271
CVE-2024-33271 affects the FME Modules eventsmanager prior to version 4.4.0. The issue allows an attacker to obtain sensitive information from the ps_customer component. Public sources in the connected documents consistently identify: affected software = FME Modules eventsmanager; vulnerable vers...
CVE-2024-33271
An issue in FME Modules eventsmanager before 4.4.0 allows an attacker to obtain sensitive information from the pscustomer component...
CVE-2024-33271
An issue in FME Modules eventsmanager before 4.4.0 allows an attacker to obtain sensitive information from the pscustomer component...
CVE-2023-45380
In the module "Order Duplicator " Clone and Delete Existing Order" orderduplicate in version = 1.1.7 from Silbersaiten for PrestaShop, a guest can download personal information without restriction. Due to a lack of permissions control, a guest can download personal information from...
CVE-2023-43984
Insecure permissions in Smart Soft advancedexport before v4.4.7 allow unauthenticated attackers to arbitrarily download user information from the pscustomer table...
CVE-2023-43984
Insecure permissions in Smart Soft advancedexport before v4.4.7 allow unauthenticated attackers to arbitrarily download user information from the pscustomer table...
CVE-2023-43984
Insecure permissions in Smart Soft advancedexport before v4.4.7 allow unauthenticated attackers to arbitrarily download user information from the pscustomer table...
CVE-2023-43984
Insecure permissions in Smart Soft advancedexport before v4.4.7 allow unauthenticated attackers to arbitrarily download user information from the pscustomer table...
PrestaShop Advanced Export Products Orders Cron CSV Excel Security Vulnerability
PrestaShop SmartSoft Advanced Export is a PrestaShop order export module from PrestaShop. A security vulnerability exists in PrestaShop Advanced Export Products Orders Cron CSV Excel prior to v4.4.7, which stems from a vulnerability that allows an unauthenticated attacker to arbitrarily download...
CVE-2023-46352
In the module "Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Module" facebookconversiontrackingplus up to version 2.4.9 from Smart Modules for PrestaShop, a guest can download personal information without restriction. Due to a lack of permissions control, a guest can access exports from...
PrestaShop Security Breach
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, SMS alerts, and product image scaling. A security vulnerability exists in PrestaShop Smart Modules for PrestaShop 2.4.9 and earlier versions, which stems from...
CVE-2023-30281
Insecure permissions vulnerability was discovered, due to a lack of permissions’s control in scquickaccounting before v3.7.3 from Store Commander for PrestaShop, a guest can access exports from the module which can lead to leak of personnal informations from pscustomer table sush as name / surnam...
CVE-2023-30281
Insecure permissions vulnerability was discovered, due to a lack of permissions’s control in scquickaccounting before v3.7.3 from Store Commander for PrestaShop, a guest can access exports from the module which can lead to leak of personnal informations from pscustomer table sush as name / surnam...
PrestaShop scquickaccounting 安全漏洞
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image scaling. A security vulnerability exists in PrestaShop scquickaccounting versions prior to v3.7.3 that stems from...