Vulnerabilities > Prestashop
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-08-07 | CVE-2023-39525 | Path Traversal vulnerability in Prestashop PrestaShop is an open source e-commerce web application. | 9.1 |
2023-08-07 | CVE-2023-39526 | SQL Injection vulnerability in Prestashop PrestaShop is an open source e-commerce web application. | 9.8 |
2023-08-07 | CVE-2023-39527 | Improper Encoding or Escaping of Output vulnerability in Prestashop PrestaShop is an open source e-commerce web application. | 6.1 |
2023-08-07 | CVE-2023-39528 | Path Traversal vulnerability in Prestashop PrestaShop is an open source e-commerce web application. | 8.6 |
2023-08-07 | CVE-2023-39529 | Unspecified vulnerability in Prestashop PrestaShop is an open source e-commerce web application. | 9.1 |
2023-08-07 | CVE-2023-39530 | Improper Input Validation vulnerability in Prestashop PrestaShop is an open source e-commerce web application. | 9.1 |
2023-08-07 | CVE-2023-39524 | SQL Injection vulnerability in Prestashop PrestaShop is an open source e-commerce web application. | 9.8 |
2023-07-25 | CVE-2023-33777 | Path Traversal vulnerability in Prestashop Amazon An issue in /functions/fbaorder.php of Prestashop amazon before v5.2.24 allows attackers to execute a directory traversal attack. | 5.3 |
2023-07-18 | CVE-2023-30153 | SQL Injection vulnerability in Prestashop Payplug An SQL injection vulnerability in the Payplug (payplug) module for PrestaShop, in versions 3.6.0, 3.6.1, 3.6.2, 3.6.3, 3.7.0 and 3.7.1, allows remote attackers to execute arbitrary SQL commands via the ajax.php front controller. | 9.8 |
2023-07-13 | CVE-2023-30151 | SQL Injection vulnerability in Prestashop A SQL injection vulnerability in the Boxtal (envoimoinscher) module for PrestaShop, after version 3.1.10, allows remote attackers to execute arbitrary SQL commands via the `key` GET parameter. | 9.8 |