Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2013-6295

Disclosure Date: February 18, 2020 (last updated February 21, 2025)
PrestaShop 1.5.5 vulnerable to privilege escalation via a Salesman account via upload module
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2013-6358

Disclosure Date: January 23, 2020 (last updated February 21, 2025)
PrestaShop 1.5.5 allows remote authenticated attackers to execute arbitrary code by uploading a crafted profile and then accessing it in the module/ directory.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0