CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-39677

MyPrestaModules Prestashop Module v6.2.9 and UpdateProducts Prestashop Module v3.6.9 were discovered to contain a PHPInfo information disclosure vulnerability via send.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.818

EPSS Ranking 99.1%

CVSS Severity

CVSS v3 Score 7.5

References

https://blog.sorcery.ie/posts/myprestamodules_phpinfo/
https://myprestamodules.com/
https://sorcery.ie
https://blog.sorcery.ie/posts/myprestamodules_phpinfo/
https://myprestamodules.com/
https://sorcery.ie

Products affected by CVE-2023-39677

Simpleimportproduct Project » Simpleimportproduct » Version: 6.2.9

cpe:2.3:a:simpleimportproduct_project:simpleimportproduct:6.2.9
Updateproducts Project » Updateproducts » Version: 3.6.9

cpe:2.3:a:updateproducts_project:updateproducts:3.6.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-39677

Products

Pricing

Contact Us