prestashop/prestashop
PrestaShop is an Open Source e-commerce platform, committed to providing the best shopping cart experience for both merchants and customers.
Security Advisories for prestashop/prestashop in packagist
Moderate
over 1 year ago
Anonymous PrestaShop customer can download other customers' invoices
packagist
prestashop/prestashop
Critical
over 1 year ago
PrestaShop cross-site scripting via customer contact form in FO, through file upload
packagist
prestashop/prestashop
Moderate
almost 2 years ago
PrestaShop XSS can be stored in DB from "add a message form" in order detail page (FO)
packagist
prestashop/prestashop
High
almost 2 years ago
PrestaShop some attribute not escaped in Validate::isCleanHTML method
packagist
prestashop/prestashop
Moderate
about 2 years ago
PrestaShop allows users to uninstall modules from backoffice, even with low rights
packagist
prestashop/prestashop
Moderate
about 2 years ago
PrestaShop allows employee without any access rights to list all installed modules
packagist
prestashop/prestashop
Moderate
over 2 years ago
PrestaShop file deletion via CustomerMessage
packagist
prestashop/prestashop
Moderate
over 2 years ago
PrestaShop file deletion via attachment API
packagist
prestashop/prestashop
Moderate
over 2 years ago
PrestaShop file access through path traversal
packagist
prestashop/prestashop
High
over 2 years ago
PrestaShop XSS injection through Validate::isCleanHTML method
packagist
prestashop/prestashop
High
over 2 years ago
Possible XSS injection through Validate::isCleanHTML method
packagist
prestashop/prestashop
Critical
over 2 years ago
SQL filter bypass leading to arbitrary write requests using "SQL Manager"
packagist
prestashop/prestashop
Moderate
almost 3 years ago
PrestaShop has potential Information exposure in the upload directory
packagist
prestashop/prestashop
Critical
over 3 years ago
PrestaShop eval injection possible if shop vulnerable to SQL injection
packagist
prestashop/prestashop
Moderate
over 3 years ago
PrestaShop Cross-site Scripting vulnerability
packagist
prestashop/prestashop
Moderate
over 3 years ago
PrestaShop Stored Cross-Site Scripting Vulnerability
packagist
prestashop/prestashop