CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-6358

PrestaShop 1.5.5 allows remote authenticated attackers to execute arbitrary code by uploading a crafted profile and then accessing it in the module/ directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.042

EPSS Ranking 88.2%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

https://web.archive.org/web/20150423041900/http://labs.davidsopas.com/2013/10/how-salesman-could-hack-prestashop.html
https://web.archive.org/web/20150423041900/http://labs.davidsopas.com/2013/10/how-salesman-could-hack-prestashop.html

Products affected by CVE-2013-6358

Prestashop » Prestashop » Version: 1.5.5.0

cpe:2.3:a:prestashop:prestashop:1.5.5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-6358

Products

Pricing

Contact Us