PT-2024-21289 · Unknown · Prestashop
Hugo Fasone
+2
·
Published
2024-02-19
·
Updated
2025-01-17
·
CVE-2024-26129
CVSS v3.1
5.8
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
PrestaShop versions 8.1.0 through 8.1.3
Description
The issue concerns path disclosure in a JavaScript variable. A patch is available to resolve this problem.
Recommendations
For PrestaShop versions 8.1.0 through 8.1.3, update to version 8.1.4 to resolve the issue.
Exploit
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Prestashop