Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
BlmodulesCsv Feeds Pro

2 matches found

CVE
CVEadded 2023/10/31 12:0 a.m.38 views

CVE-2023-46356

CVE-2023-46356 affects PrestaShop module CSV Feeds PRO prior to 2.6.1. The vulnerability is a SQL injection in SearchApiCsv::getProducts(), exploitable by a guest via a trivial HTTP request due to a sensitive SQL call. Impact is high (potential data compromise/alteration and service disruption) a...

9.8CVSS9.7AI score0.00066EPSS
CVE
CVEadded 2023/11/27 12:0 a.m.31 views

CVE-2023-46355

CVE-2023-46355—CSV Feeds PRO (PrestaShop) affects Bl Modules csvfeeds module prior to version 2.6.1. The root cause is overly permissive access control that does not require an administrator to authenticate when accessing feeds, allowing guests to download exports and potentially leak personal da...

5.3CVSS5.2AI score0.00088EPSS