Description PrestaShop 1.5.5 vulnerable to privilege escalation via a Salesman account via upload module Remediation References CVE-2013-6295 Related Vulnerabilities WordPress Plugin Walk Score Multiple Cross-Site Scripting Vulnerabilities (0.5.5) Moodle Other Vulnerability (CVE-2004-2232) WordPress Plugin Simple Slideshow Manager Multiple Cross-Site Scripting Vulnerabilities (2.3) WordPress Plugin Post Type Switcher Multiple Unspecified Vulnerabilities (1.5.0) Python Off-by-one Error Vulnerability (CVE-2007-2052) Severity Critical Classification CVE-2013-6295 CWE-269 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities