CVE-2024-26469 | Tunis Product Designer Module prior 1.178.36 on PrestaShop postProcess url server-side request forgery

Posted by Angelo Barbosa | Mar 3, 2024 | CVE

A vulnerability has been found in Tunis Product Designer Module on PrestaShop and classified as critical. Affected by this vulnerability is the function postProcess. The manipulation of the argument url leads to server-side request forgery.

This vulnerability is known as CVE-2024-26469. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26469 | Tunis Product Designer Module prior 1.178.36 on PrestaShop postProcess url server-side request forgery

Related Posts

CVE-2024-5158 | Google Chrome prior 125.0.6422.76 V8 type confusion

CVE-2024-25678 | LiteSpeed QUIC Library up to 4.0.3 DCID Privilege Escalation

CVE-2024-1036 | openBI up to 1.0.8 Icon Screen.php uploadIcon unrestricted upload

CVE-2023-6627 | WP Go Maps Plugin up to 9.0.27 on WordPress REST API cross site scripting