Описание
A PHAR deserialization vulnerability in the component /themes/import of PrestaShop v8.2.0 allows attackers to execute arbitrary code via a crafted POST request.
Ссылки
- Not Applicable
- Broken Link
- Product
- ExploitThird Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:prestashop:prestashop:8.2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00227
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 6.5
github
6 месяцев назад
A PHAR deserialization vulnerability in the component /themes/import of PrestaShop v8.2.0 allows attackers to execute arbitrary code via a crafted POST request.
EPSS
Процентиль: 45%
0.00227
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-77