Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

PrestaShop Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-4792)

Description

PrestaShop before 1.4.11 allows logout CSRF.

Remediation

References

Related Vulnerabilities

WordPress Plugin Email Subscribers by Icegram Express-Email Marketing, Newsletters, Automation for WordPress & WooCommerce Cross-Site Scripting (5.7.15)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-2222)

Joomla! Core 3.x.x Multiple Vulnerabilities (3.7.0 - 3.8.3)

WordPress Plugin wpDataTables-WordPress Data Table, Dynamic Tables & Table Charts (Premium) Security Bypass (6.3.2)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7848)

Severity

Medium

Classification

CVE-2013-4792 CWE-352 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities