CVE-2024-25842 | Account Manager Module up to 8.x on PrestaShop uploadLogo/postProcess information disclosure

Inserito da Angelo Barbosa | Mar 3, 2024 | CVE

A vulnerability classified as problematic was found in Account Manager Module up to 8.x on PrestaShop. This vulnerability affects the function uploadLogo/postProcess. The manipulation leads to information disclosure.

This vulnerability was named CVE-2024-25842. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-25842 | Account Manager Module up to 8.x on PrestaShop uploadLogo/postProcess information disclosure

Post correlati

CVE-2024-7465 | TOTOLINK CP450 4.1.0cu.747_B20191224 /cgi-bin/cstecgi.cgi loginauth http_host buffer overflow

CVE-2024-4817 | Campcodes Online Laundry Management System 1.0 HTTP Request Parameter manage_user.php id resource injection

CVE-2024-6157 | ABB RobotWare 6 prior 6.13.07/6.15.06 PROFINET Stack null pointer dereference

CVE-2024-35169 | AREOI All Bootstrap Blocks Plugin up to 1.3.15 on WordPress cross site scripting