CVE-2024-25842 | Account Manager Module up to 8.x on PrestaShop uploadLogo/postProcess information disclosure

Inserito da Angelo Barbosa | Mar 3, 2024 | CVE

A vulnerability classified as problematic was found in Account Manager Module up to 8.x on PrestaShop. This vulnerability affects the function uploadLogo/postProcess. The manipulation leads to information disclosure.

This vulnerability was named CVE-2024-25842. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-25842 | Account Manager Module up to 8.x on PrestaShop uploadLogo/postProcess information disclosure

Post correlati

CVE-2024-23744 | mbed TLS 3.5.1 TLS 1.3 ClientHallo denial of service (Issue 8694)

CVE-2023-48247 | Rexroth Nexo Cordless Nutrunner up to V1500-SP2 HTTP Request authorization

CVE-2024-38223 | Microsoft Windows up to Server 2022 23H2 Initial Machine Configuration access control

CVE-2024-7459 | OSWAPP Warehouse Inventory System 1.0/2.0 /edit_account.php cross-site request forgery