Vulnerabilities
Vulnerable Software
Webbax:  Security Vulnerabilities
An issue was discovered in Webbax "Super Newsletter" (supernewsletter) module for PrestaShop versions 1.4.21 and before, allows local attackers to escalate privileges and obtain sensitive information.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-03-03
PrestaShop postfinance <= 17.1.13 is vulnerable to SQL Injection via PostfinanceValidationModuleFrontController::postProcess().
CVSS Score
9.8
EPSS Score
0.001
Published
2023-06-14
Prestashop winbizpayment <= 1.0.2 is vulnerable to Incorrect Access Control via modules/winbizpayment/downloads/download.php.
CVSS Score
7.5
EPSS Score
0.05
Published
2023-06-12
Improper Limitation of a Pathname leads to a Path Traversal vulnerability in the module King-Avis for Prestashop, allowing a user knowing the download token to read arbitrary local files.This issue affects King-Avis: before 17.3.15.
CVSS Score
4.9
EPSS Score
0.001
Published
2023-06-02
Incorrect Access Control in the module "My inventory" (myinventory) <= 1.6.6 from Webbax for PrestaShop, allows a guest to download personal information without restriction by performing a path traversal attack.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-31
Prestashop salesbooster <= 1.10.4 is vulnerable to Incorrect Access Control via modules/salesbooster/downloads/download.php.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-05-30
Prestashop customexporter <= 1.7.20 is vulnerable to Incorrect Access Control via modules/customexporter/downloads/download.php.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-19


Contact Us

Shodan ® - All rights reserved