exploitDog

CVE-2024-24309

Опубликовано: 23 фев. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

In the module "Survey TMA" (ecomiz_survey_tma) up to version 2.0.0 from Ecomiz for PrestaShop, a guest can download personal information without restriction.

Ссылки

https://security.friendsofpresta.org/modules/2024/02/20/ecomiz_survey_tma.html
Patch
Third Party Advisory
https://www.ecomiz.com/
Product
https://security.friendsofpresta.org/modules/2024/02/20/ecomiz_survey_tma.html
Patch
Third Party Advisory
https://www.ecomiz.com/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ecomiz:survey_tma:*:*:*:*:*:prestashop:*:*

Версия до 2.0.0 (включая)

EPSS

Процентиль: 21%

0.00069

Низкий

7.5 High

CVSS3

Дефекты

CWE-200

Связанные уязвимости

GHSA-6gr8-w5jx-65mj

CVSS3: 7.5

github

почти 2 года назад

In the module "Survey TMA" (ecomiz_survey_tma) up to version 2.0.0 from Ecomiz for PrestaShop, a guest can download personal information without restriction.

EPSS

Процентиль: 21%

0.00069

Низкий

7.5 High

CVSS3

Дефекты

CWE-200