CVE-2024-25846 | MyPrestaModules Product Catalog Import Module up to 6.7.0 on PrestaShop unrestricted upload

Inserito da Angelo Barbosa | Feb 27, 2024 | CVE

A vulnerability, which was classified as critical, was found in MyPrestaModules Product Catalog Import Module up to 6.7.0 on PrestaShop. Affected is an unknown function. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2024-25846. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-25846 | MyPrestaModules Product Catalog Import Module up to 6.7.0 on PrestaShop unrestricted upload

Post correlati

CVE-2024-5639 | User Profile Picture Plugin up to 2.6.1 on WordPress resource injection

CVE-2024-2584 | Amssplus AMSS++ 4.31 select_send.php sd_index sql injection

CVE-2024-8327 | Hwa Jiuh Digital Technology Easy Test Online Learning and Testing Platform prior 24A01 page sql injection

CVE-2024-34217 | Totolink CP450 4.1.0cu.747_B20191224 addWlProfileClientMode stack-based overflow