CVE-2023-27639

Name of the Vulnerable Software and Affected Versions tshirtecommerce (aka Custom Product Designer) version 2.1.4 for PrestaShop

Description An issue allows a remote attacker to forge an HTTP request with the file name parameter in the "tshirtecommerce/ajax.php?type=svg" endpoint to traverse directories and open files without restriction on the extension and path, but only files that can be parsed in XML can be opened. This issue has been exploited in the wild.

Recommendations For version 2.1.4, consider disabling the "tshirtecommerce/ajax.php?type=svg" endpoint or restricting access to it until a fix is available. Additionally, restrict the use of the file name parameter to minimize the risk of exploitation.