Product Designer@* Security Vulnerabilities and Issues — Product Designer@* CVE List

Lucene search

PrestalifeProduct Designer*

3 matches found

CVE•added 2024/03/03 10:15 a.m.•53 views

CVE-2024-26469

Server-Side Request Forgery (SSRF) vulnerability in Tunis Soft "Product Designer" (productdesigner) module for PrestaShop before version 1.178.36, allows remote attackers to cause a denial of service (DoS) and escalate privileges via the url parameter in the postProcess() method.

8.1CVSS7.2AI score0.00357EPSS

CVE•added 2024/03/03 8:15 a.m.•46 views

CVE-2024-24307

Path Traversal vulnerability in Tunis Soft "Product Designer" (productdesigner) module for PrestaShop before version 1.178.36, allows a remote attacker to escalate privileges and obtain sensitive information via the ajaxProcessCropImage() method.

7.5CVSS6.7AI score0.00076EPSS

CVE•added 2024/03/03 9:15 a.m.•39 views

CVE-2024-24302

An issue was discovered in Tunis Soft "Product Designer" (productdesigner) module for PrestaShop before version 1.178.36, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the postProcess() method.

9.8CVSS7.5AI score0.01591EPSS