Vulnerabilities > CVE-2023-30281 - Unspecified vulnerability in Storecommander Scquickaccounting
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Insecure permissions vulnerability was discovered, due to a lack of permissions’s control in scquickaccounting before v3.7.3 from Store Commander for PrestaShop, a guest can access exports from the module which can lead to leak of personnal informations from ps_customer table sush as name / surname / email
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |