PrestaShop is an open source e-commerce web application. In PrestaShop 8.1.5, any invoice can be downloaded from front-office in anonymous mode, by supplying a random secure_key parameter in the url. This issue is patched in version 8.1.6. No known workarounds are available.
Metrics
Affected Vendors & Products
References
History
Tue, 21 Jan 2025 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Prestashop
Prestashop prestashop |
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:a:prestashop:prestashop:8.1.5:*:*:*:*:*:*:* | |
Vendors & Products |
Prestashop
Prestashop prestashop |

Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-05-14T15:47:27.265Z
Updated: 2024-08-02T02:59:22.270Z
Reserved: 2024-05-07T13:53:00.134Z
Link: CVE-2024-34717

Updated: 2024-08-02T02:59:22.270Z

Status : Analyzed
Published: 2024-05-14T16:17:28.540
Modified: 2025-01-21T16:04:37.930
Link: CVE-2024-34717

No data.