CVE-2024-33836 | JA Marketplace Module up to 6.X/8.X/9.0.1 on PrestaShop init unrestricted upload

Inserito da Angelo Barbosa | Giu 19, 2024 | CVE

A vulnerability, which was classified as critical, was found in JA Marketplace Module up to 6.X/8.X/9.0.1 on PrestaShop. This affects the function JmarketplaceproductModuleFrontController::init. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2024-33836. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-33836 | JA Marketplace Module up to 6.X/8.X/9.0.1 on PrestaShop init unrestricted upload

Post correlati

CVE-2023-51784 | Apache InLong up to 1.9.0 code injection

CVE-2024-5349 | LA-Studio Element Kit for Elementor Plugin up to 1.3.8.1 on WordPress file inclusion

CVE-2024-41688 | SyroTech SY-GPON-1110-WDONT 3.1.02-231102 firmware/ cleartext storage (CIVN-2024-0225)

CVE-2024-35766 | ollybach WPPizza Plugin up to 3.18.13 on WordPress cross site scripting