13 matches found
CVE-2024-25841
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
CVE-2024-25844
An issue was discovered in Common-Services "So Flexibilite" soflexibilite module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file...
CVE-2024-25844
An issue was discovered in Common-Services "So Flexibilite" soflexibilite module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file...
Design/Logic Flaw
An issue was discovered in Common-Services "So Flexibilite" soflexibilite module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file...
CVE-2024-25844
Summary of CVE-2024-25844 (PrestaShop So Flexibilite module): The vulnerability affects PrestaShop’s Common-Services “So Flexibilite” module prior to version 4.1.26, where an attacker can remotely escalate privileges and access sensitive information via a debug file. Impact is described as high f...
PT-2024-21156 · Unknown · So Flexibilite +1
Name of the Vulnerable Software and Affected Versions: PrestaShop versions prior to 4.1.26 Description: An issue in the Common-Services "So Flexibilite" soflexibilite module allows remote attackers to escalate privileges and obtain sensitive information via a debug file. Recommendations: For...
PrestaShop Security Breach
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, short message alerts, and product image scaling. A security vulnerability previously existed in PrestaShop So Flexibilite version 4.1.26, which stemmed from a...
CVE-2024-25841
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
Cross site scripting
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
PT-2024-21153 · Unknown +1 · Prestashop +1
Name of the Vulnerable Software and Affected Versions: PrestaShop versions prior to 4.1.26 Description: The issue allows a guest or authenticated customer to perform Cross Site Scripting XSS injection in the "So Flexibilite" module from Common-Services. Recommendations: For PrestaShop versions...
CVE-2024-25841
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
CVE-2024-25841
In the module "So Flexibilite" soflexibilite from Common-Services for PrestaShop 4.1.26, a guest authenticated customer can perform Cross Site Scripting XSS injection...
CVE-2024-25841
CVE-2024-25841 affects PrestaShop via the So Flexibilite module from Common-Services. The vulnerability allows a guest (authenticated customer) to perform a Cross Site Scripting (XSS) injection in versions earlier than 4.1.26. Root cause details are not provided beyond the XSS in this module. The...