Assigner | CERT-PL |
Reserved | 2024-03-21 |
Published | 2024-04-04 |
Updated | 2024-06-06 |
Description
Improper access control vulnerability in Apaczka plugin for PrestaShop allows information gathering from saved templates without authentication.This issue affects Apaczka plugin for PrestaShop from v1 through v4.
Problem types
CWE-284 Improper Access Control
Product status
v1
Credits
Jakub Przepióra
References
https://cert.pl/en/posts/2024/04/CVE-2024-2759/
https://cert.pl/posts/2024/04/CVE-2024-2759/