Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

PrestaShop NULL Pointer Dereference Vulnerability (CVE-2024-36626)

Description

In prestashop 8.1.4, a NULL pointer dereference was identified in the math_round function within Tools.php.

Remediation

References

Related Vulnerabilities

WordPress Plugin WP Editor Multiple Vulnerabilities (1.2.5.3)

WebLogic CVE-2024-21006 Vulnerability (CVE-2024-21006)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-6333)

WP Plugin Advanced Custom Fields Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-24241)

WordPress Plugin Page Builder:PageLayer-Drag and Drop website builder Cross-Site Request Forgery (1.1.1)

Severity

Medium

Classification

CVE-2024-36626 CWE-476 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Tags

Missing Update Known Vulnerabilities