13 matches found
CVE-2024-25841
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
CVE-2024-25844
An issue was discovered in Common-Services "So Flexibilite" soflexibilite module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file...
CVE-2024-25844
An issue was discovered in Common-Services "So Flexibilite" soflexibilite module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file...
Design/Logic Flaw
An issue was discovered in Common-Services "So Flexibilite" soflexibilite module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file...
PrestaShop Security Breach
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, short message alerts, and product image scaling. A security vulnerability previously existed in PrestaShop So Flexibilite version 4.1.26, which stemmed from a...
CVE-2024-25844
Summary of CVE-2024-25844 (PrestaShop So Flexibilite module): The vulnerability affects PrestaShop’s Common-Services “So Flexibilite” module prior to version 4.1.26, where an attacker can remotely escalate privileges and access sensitive information via a debug file. Impact is described as high f...
PT-2024-21156 · Unknown · So Flexibilite +1
Name of the Vulnerable Software and Affected Versions: PrestaShop versions prior to 4.1.26 Description: An issue in the Common-Services "So Flexibilite" soflexibilite module allows remote attackers to escalate privileges and obtain sensitive information via a debug file. Recommendations: For...
CVE-2024-25841
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
Cross site scripting
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
CVE-2024-25841
CVE-2024-25841 affects PrestaShop via the So Flexibilite module from Common-Services. The vulnerability allows a guest (authenticated customer) to perform a Cross Site Scripting (XSS) injection in versions earlier than 4.1.26. Root cause details are not provided beyond the XSS in this module. The...
CVE-2024-25841
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
CVE-2024-25841
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
PT-2024-21153 · Unknown +1 · Prestashop +1
Name of the Vulnerable Software and Affected Versions: PrestaShop versions prior to 4.1.26 Description: The issue allows a guest or authenticated customer to perform Cross Site Scripting XSS injection in the "So Flexibilite" module from Common-Services. Recommendations: For PrestaShop versions...