Andrea Iodice

**Name of the Vulnerable Software and Affected Versions** Correos Oficial WordPress plugin versions 1.2.0.2 and earlier **Description** The issue allows unauthenticated attackers to download arbitrary files from the server due to a lack of authorization check and user input validation when generating a file path. **Recommendations** For Correos Oficial WordPress plugin versions 1.2.0.2 and earlier, update to a version that includes the necessary authorization checks and input validation to prevent arbitrary file downloads. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Correos Prestashop versions 1.7.x **Description** A vulnerability in the descarga etiqueta.php component allows attackers to execute a directory traversal. **Recommendations** For Correos Prestashop versions 1.7.x, consider restricting access to the descarga etiqueta.php component until a patch is available. As a temporary workaround, disabling the vulnerable component may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PrestaShop versions 1.6 through 1.7 **Description** The issue allows remote attackers to obtain sensitive information, such as a service's owner password that can be used to modify orders via SOAP. Attackers can also retrieve information about orders or buyers. **Recommendations** For PrestaShop versions 1.6 through 1.7, consider disabling the Correos Express addon until a patch is available to prevent remote attackers from obtaining sensitive information. Restrict access to SOAP endpoints to minimize the risk of exploitation. Avoid using the Correos Express addon to modify orders until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** RESET.PRO Adobe Stock API integration version 4.8 for PrestaShop **Description** The issue allows remote attackers to execute arbitrary code by uploading a .php file through the 'reset/modules/advanced form maker edit/multiupload/upload.php' endpoint. **Recommendations** For RESET.PRO Adobe Stock API integration version 4.8, consider disabling the upload functionality in 'reset/modules/advanced form maker edit/multiupload/upload.php' until a patch is available to prevent remote code execution.

**Name of the Vulnerable Software and Affected Versions** PrestaShop versions 1.6 and 1.7 **Description** The issue allows remote attackers to execute arbitrary code by uploading a .php file through the reset/modules/fotoliaFoto/multi upload.php endpoint in the RESET.PRO Adobe Stock API Integration. **Recommendations** For PrestaShop version 1.6, restrict access to the multi upload.php file to prevent arbitrary code execution. For PrestaShop version 1.7, restrict access to the multi upload.php file to prevent arbitrary code execution.

**Name of the Vulnerable Software and Affected Versions** PrestaShop versions 1.5.5.0 through 1.7.2.5 Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module version 1.0.32 **Description** The issue allows remote attackers to execute a SQL Injection through function calls in the `code` parameter of the `ajax phpcode.php` file in the Responsive Mega Menu module. **Recommendations** For PrestaShop versions 1.5.5.0 through 1.7.2.5, consider disabling the `ajax phpcode.php` file in the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module until a patch is available. For the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module version 1.0.32, avoid using the `code` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PrestaShop versions 1.5.5.0 through 1.7.2.5 Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module version 1.0.32 **Description** The issue allows remote attackers to execute arbitrary PHP code. This is achieved via the `code` parameter in the `modules/bamegamenu/ajax phpcode.php` file of the Responsive Mega Menu module. **Recommendations** For PrestaShop versions 1.5.5.0 through 1.7.2.5, consider removing or restricting access to the `modules/bamegamenu/ajax phpcode.php` file until a patch is available. For the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module version 1.0.32, avoid using the `code` parameter in the affected API endpoint until the issue is resolved.