CVE-2024-26469
- EPSS 0.36%
- Published 03.03.2024 10:15:06
- Last modified 13.05.2025 14:22:16
Server-Side Request Forgery (SSRF) vulnerability in Tunis Soft "Product Designer" (productdesigner) module for PrestaShop before version 1.178.36, allows remote attackers to cause a denial of service (DoS) and escalate privileges via the url paramete...
CVE-2024-24302
- EPSS 1.59%
- Published 03.03.2024 09:15:06
- Last modified 15.05.2025 21:13:38
An issue was discovered in Tunis Soft "Product Designer" (productdesigner) module for PrestaShop before version 1.178.36, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the postProcess() m...
CVE-2024-24307
- EPSS 0.08%
- Published 03.03.2024 08:15:08
- Last modified 15.05.2025 21:12:53
Path Traversal vulnerability in Tunis Soft "Product Designer" (productdesigner) module for PrestaShop before version 1.178.36, allows a remote attacker to escalate privileges and obtain sensitive information via the ajaxProcessCropImage() method.