CVE-2024-24311

Name of the Vulnerable Software and Affected Versions Linea Grafica "Multilingual and Multistore Sitemap Pro - SEO" (lgsitemaps) module for PrestaShop versions prior to 1.6.6

Description The issue allows a guest to download personal information without restriction due to a Path Traversal vulnerability. This vulnerability can be exploited by an unauthorized user to access sensitive data.

Recommendations For versions prior to 1.6.6, update to version 1.6.6 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive information until the update can be applied.