CVE-2024-25843 - How a Guest Could Hack PrestaShop Sites via "Import/Update Bulk Product from any Csv/Excel File Pro" Module
PrestaShop is a popular e-commerce platform used worldwide. Add-ons enhance its abilities, but sometimes they also introduce security risks. This is the case for the
CVE-2024-25841 - XSS Vulnerability in "So Flexibilite" PrestaShop Module (< 4.1.26) — Exploit Details & PoC
---
PrestaShop is a popular open-source eCommerce platform, and many websites use its plugin "So Flexibilite" (soflexibilite) module by Common-Services to manage payment
CVE-2024-25840 - Path Traversal in PrestaSalesManager lets Guests Download Personal Info in PrestaShop
Published: June, 2024
Impacts: Presta World "Account Manager | Sales Representative & Dealers | CRM" (prestasalesmanager) module versions up to 9.
Environment: PrestaShop e-commerce websites
CVE-2024-25846 - PrestaShop Product Catalog Import Module File Upload Vulnerability Deep Dive
Recently, a critical vulnerability (CVE-2024-25846) was discovered in the "Product Catalog (CSV, Excel) Import" module (also known as simpleimportproduct) for PrestaShop. This popular
CVE-2024-1924 - Critical SQL Injection in CodeAstro Membership Management System 1.
CVE ID: CVE-2024-1924
Vulnerable Software: CodeAstro Membership Management System 1.
Vulnerability Type: SQL Injection
Attack Vector: Remote
Public Exploit Available: YES
Reference: VDB-254859
What is
Episode
00:00:00
00:00:00