Sensitive Information Disclosure in Prestashop UPS Shipping Module
CVE-2026-39079
7.5HIGH
What is CVE-2026-39079?
A vulnerability exists within the Prestashop UPS Shipping Module that could allow a remote attacker to expose sensitive information. This issue affects all versions of the module up to and including version 2.4.0. Attackers may exploit this vulnerability by accessing specific components, namely /modules/upsshipping/logs/ and /modules/upsshipping/lib/UPSBaseApi.php, potentially leading to unauthorized information retrieval.
