Описание
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, it is possible to delete a file from the server by using the Attachments controller and the Attachments API. Version 8.1.1 contains a patch for this issue. There are no known workarounds.
Ссылки
- Patch
- Vendor Advisory
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.1.1 (исключая)
cpe:2.3:a:prestashop:prestashop:*:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00714
Низкий
6.7 Medium
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-20
NVD-CWE-noinfo
Связанные уязвимости
EPSS
Процентиль: 72%
0.00714
Низкий
6.7 Medium
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-20
NVD-CWE-noinfo