Improper Limitation of a Pathname leads to a Path Traversal vulnerability in the module King-Avis for Prestashop, allowing a user knowing the download token to read arbitrary local files.This issue affects King-Avis: before 17.3.15.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: NCSC.ch

Published: 2023-06-02T12:42:11.842Z

Updated: 2024-08-02T06:41:04.192Z

Reserved: 2023-06-01T08:47:15.058Z

Link: CVE-2023-3031

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-06-02T13:15:10.007

Modified: 2024-11-21T08:16:16.910

Link: CVE-2023-3031

cve-icon Redhat

No data.