CVE-2024-26469 Information
Mar 07, 2024
cve
Description
Server-Side Request Forgery (SSRF) vulnerability in Tunis Soft \Product Designer\ (productdesigner) module for PrestaShop before version 1.178.36 allows remote attackers to cause a denial of service (DoS) and escalate privileges via the url parameter in the postProcess() method.
Reference
https://github.com/friends-of-presta/security-advisories/blob/main/_posts/2024-02-29-productdesigner-918.md
Server-Side
Request
Forgery
(SSRF)
vulnerability
in
Tunis
Soft
\Product
Designer
(productdesigner)
module
for
PrestaShop
before
version
1.178.36
allows
remote
attackers
to
cause
a
denial
of
service
(DoS)
and
escalate
privileges
via
the
url
parameter
in
the
postProcess()
method.