Vulnerabilities > Prestashop > Advanced Loyalty Program > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-01-16 CVE-2023-48926 Missing Authorization vulnerability in Prestashop Advanced Loyalty Program
An issue in 202 ecommerce Advanced Loyalty Program: Loyalty Points before v2.3.4 for PrestaShop allows unauthenticated attackers to arbitrarily change an order status.
network
low complexity
prestashop CWE-862
5.3
5.3