prestashop Latest Vulnerabilities
Latest vulnerabilities published by prestashop
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Stored Cross-Site Scripting Vulnerability in Prestashop by PrestaShop SA
CVE-2025-1230PrestashopPrestashop4.8MEDIUMCross-Site Scripting Vulnerability in PrestaShop Module by PrestaShop
CVE-2025-24027PrestashopPs Contactinfo6.2MEDIUMNULL Pointer Dereference Vulnerability in PrestaShop 8.1.4
CVE-2024-36626PrestaShopRemote Code Execution Vulnerability in Prestashop by Fckroun
CVE-2024-41651PrestashopPrestashopEPSS 10%8.1HIGHSQL Injection Vulnerability in Custom Links Module for PrestaShop by Promokit.eu
CVE-2024-36684PrestashopPk Customlinks9.8CRITICALVulnerability in Help Desk Module Allows for Malicious File Uploads
CVE-2024-34990FME Modules for P...PrestaShop Fixes Invoice Download Vulnerability
CVE-2024-34717PrestashopPrestashop5.3MEDIUMPrestaShop Cross-Site Scripting Vulnerability Affects Customer Thread Feature
CVE-2024-34716PrestashopPrestashopEPSS 10%6.1MEDIUMSQL Injection Vulnerability in PrestaShop Module by PrestaShop
CVE-2024-28392PrestaShopPSCartAbandonmentProSQL Injection Vulnerability in Best-Kit Popup Module by PrestaShop
CVE-2024-28395PrestaShopBest-Kit Popup ModuleArbitrary Code Execution Vulnerability in Advanced Plugins Sales Reports Module
CVE-2024-28394PrestaShopAdvanced Plugins Sales...Cross Site Scripting Vulnerability in So Flexibilite for PrestaShop
CVE-2024-25841PrestaShopSo FlexibilitePrestaShop vulnerable to path disclosure in JavaScript variable
CVE-2024-26129PrestaShopPrestaShop5.3MEDIUMPrestaShop Easy Redirect Vulnerable to SQL Injection
CVE-2023-50061PrestaShopOp\'art Easy Redirect9.8CRITICALXSS can be stored in DB from "add a message form" in order detail page (FO)
CVE-2024-21628PrestaShopPrestaShop5.4MEDIUMSome attribute not escaped in Validate::isCleanHTML method
CVE-2024-21627PrestaShopPrestaShop8.1HIGHAny value can be changed in the configuration table by an employee having access to block reassurance module
CVE-2023-47110PrestashopBlockreassurance9.1CRITICALPrestaShop blockreassurance BO User can remove any file from server when adding a and deleting a block
CVE-2023-47109PrestashopBlockreassurance5.5MEDIUMSQL Injection Vulnerability in Prestashop Opartlimitquantity Module
CVE-2023-36263PrestashopOpartlimitquantity9.8CRITICALImproper Privilege Management in Prestashop
CVE-2023-43663PrestashopPrestashop6.3MEDIUMEmployee without any access rights can list all installed modules in Prestashop
CVE-2023-43664PrestashopPrestashop4.3MEDIUMCross-site Scripting in M4 PDF plugin for Prestashop sites
CVE-2022-45448PrestashopM4 PDF Plugin3.5LOWPath Traversal in M4 PDF plugin for Prestashop sites
CVE-2022-45447PrestashopM4 PDF Plugin6.5MEDIUMPrestaShop vulnerable to file reading through path traversal
CVE-2023-39528PrestashopPrestashop6.8MEDIUMPrestaShop vulnerable to file deletion via attachment API
CVE-2023-39529PrestashopPrestashop6.7MEDIUM