Vulnerability Details CVE-2024-28390
An issue in Advanced Plugins ultimateimagetool module for PrestaShop before v.2.2.01, allows a remote attacker to escalate privileges and obtain sensitive information via Improper Access Control.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.6%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2024-28390
-
cpe:2.3:a:advancedplugins:ultimateimagetool:-
-
cpe:2.3:a:advancedplugins:ultimateimagetool:2.1.02
-
cpe:2.3:a:advancedplugins:ultimateimagetool:2.1.03
-
cpe:2.3:a:advancedplugins:ultimateimagetool:2.1.04