Description

PrestaShop is an open-source e-commerce platform. Starting in version 8.1.0 and prior to version 8.1.4, PrestaShop is vulnerable to path disclosure in a JavaScript variable. A patch is available in version 8.1.4.

Remediation

References

CVE-2024-26129

Related Vulnerabilities

WordPress Denial of Service Vulnerability (0.70 - 3.6.1)

SharePoint Improper Certificate Validation Vulnerability (CVE-2019-1006)

MyBB Cryptographic Issues Vulnerability (CVE-2008-4929)

Apache HTTP Server Use After Free Vulnerability (CVE-2017-9798)

WordPress Plugin Easy PayPal Events Unspecified Vulnerability (1.1.6)

Severity

Medium

Classification

CVE-2024-26129 CWE-22 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities