Описание
PrestaShop is an open source e-commerce web application. Prior to version 8.1.1, it is possible to delete files from the server via the CustomerMessage API. Version 8.1.1 contains a patch for this issue. There are no known workarounds.
Ссылки
- Patch
- Vendor Advisory
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.1.1 (исключая)
cpe:2.3:a:prestashop:prestashop:*:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00774
Низкий
6.5 Medium
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-20
Связанные уязвимости
EPSS
Процентиль: 73%
0.00774
Низкий
6.5 Medium
CVSS3
9.1 Critical
CVSS3
Дефекты
CWE-20