| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-39530 | PrestaShop vulnerable to file deletion via CustomerMessage | PrestaShop | PrestaShop | Medium | 6.5 | 2023-08-07 20:51:52 | Deep Dive |
| CVE-2023-39529 | PrestaShop vulnerable to file deletion via attachment API | PrestaShop | PrestaShop | Medium | 6.7 | 2023-08-07 20:37:16 | Deep Dive |
| CVE-2023-39528 | PrestaShop vulnerable to file reading through path traversal | PrestaShop | PrestaShop | Medium | 6.8 | 2023-08-07 20:35:08 | Deep Dive |
| CVE-2023-39527 | PrestaShop XSS vulnerability through Validate::isCleanHTML method | PrestaShop | PrestaShop | High | 8.3 | 2023-08-07 20:32:45 | Deep Dive |
| CVE-2023-39526 | PrestaShopSQL manager vulnerability (potential RCE) | PrestaShop | PrestaShop | Critical | 9.1 | 2023-08-07 20:28:59 | Deep Dive |
| CVE-2023-39525 | PrestaShop vulnerable to path traversal | PrestaShop | PrestaShop | Medium | 6.5 | 2023-08-07 20:23:54 | Deep Dive |
| CVE-2023-39524 | PrestaShop vulnerable to boolean SQL injection in search product in BO | PrestaShop | PrestaShop | Medium | 6.7 | 2023-08-07 19:48:22 | Deep Dive |
| CVE-2023-30839 | PrestaShop vulnerable to SQL filter bypass leading to arbitrary write requests using "SQL Manager" | PrestaShop | PrestaShop | Critical | 9.9 | 2023-04-25 18:41:39 | Deep Dive |
| CVE-2023-30838 | PrestaShop vulnerable to possible XSS injection through Validate::isCleanHTML method | PrestaShop | PrestaShop | High | 8.5 | 2023-04-25 18:22:55 | Deep Dive |
| CVE-2023-30545 | PrestaShop arbitrary file read vulnerability | PrestaShop | PrestaShop | High | 7.7 | 2023-04-25 17:47:02 | Deep Dive |
| CVE-2023-28839 | Improper neutralization in an SQL query in Shoppingfeed | shoppingflux | module-prestashop | Critical | 9.4 | 2023-04-18 20:44:56 | Deep Dive |
| CVE-2023-25170 | PrestaShop has possible CSRF token fixation | PrestaShop | PrestaShop | Medium | 5.0 | 2023-03-13 16:55:25 | Deep Dive |
| CVE-2022-46158 | Potential Information exposure in the upload directory in PrestaShop | PrestaShop | PrestaShop | Medium | 5.3 | 2022-12-08 21:50:44 | Deep Dive |
| CVE-2022-35933 | PrestaShop module Product Comments vulnerable to cross-site scripting (XSS) | PrestaShop | productcomments | 中危 | - | 2022-09-02 19:30:14 | Deep Dive |
| CVE-2022-31181 | Remote code execution in prestashop | PrestaShop | PrestaShop | Critical | 9.8 | 2022-08-01 19:30:16 | Deep Dive |
| CVE-2022-31101 | SQL Injection in prestashop/blockwishlist | PrestaShop | blockwishlist | High | 8.1 | 2022-06-27 22:15:20 | Deep Dive |
| CVE-2022-21686 | Server Side Twig Template Injection in PrestaShop | PrestaShop | PrestaShop | Critical | 9.0 | 2022-01-26 20:10:10 | Deep Dive |
| CVE-2021-43789 | Blind SQLi using Search filters in PrestaShop | PrestaShop | PrestaShop | High | 7.5 | 2021-12-07 16:45:12 | Deep Dive |
| CVE-2021-21418 | Potential XSS injection in the newsletter conditions field | PrestaShop | ps_emailsubscription | Medium | 4.6 | 2021-03-31 17:35:15 | Deep Dive |
| CVE-2021-21398 | Possible XSS injection through DataColumn Grid class | PrestaShop | PrestaShop | Medium | 5.4 | 2021-03-30 15:25:13 | Deep Dive |