Описание
In the module "Account Manager | Sales Representative & Dealers | CRM" (prestasalesmanager) up to 9.0 from Presta World for PrestaShop, a guest can download personal information without restriction by performing a path traversal attack.
Ссылки
- Product
- PatchVendor Advisory
- Product
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.0.0 (исключая)
cpe:2.3:a:prestaworld:account_manager:*:*:*:*:*:prestashop:*:*
EPSS
Процентиль: 63%
0.00438
Низкий
7.5 High
CVSS3
Дефекты
CWE-31
Связанные уязвимости
CVSS3: 7.5
github
почти 2 года назад
In the module "Account Manager | Sales Representative & Dealers | CRM" (prestasalesmanager) up to 9.0 from Presta World for PrestaShop, a guest can download personal information without restriction by performing a path traversal attack.
EPSS
Процентиль: 63%
0.00438
Низкий
7.5 High
CVSS3
Дефекты
CWE-31