nvd-json-data-feeds/CVE-2023/CVE-2023-463xx/CVE-2023-46354.json

{
  "id": "CVE-2023-46354",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-12-06T23:15:07.380",
  "lastModified": "2023-12-07T12:12:36.717",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "In the module \"Orders (CSV, Excel) Export PRO\" (ordersexport) < 5.2.0 from MyPrestaModules for PrestaShop, a guest can download personal information without restriction. Due to a lack of permissions control, a guest can access exports from the module which can lead to a leak of personal information from ps_customer/ps_address tables such as name / surname / email / phone number / full postal address."
    },
    {
      "lang": "es",
      "value": "En el m\u00f3dulo \"Orders (CSV, Excel) Export PRO\" (ordersexport) &lt; 5.2.0 de MyPrestaModules para PrestaShop, un invitado puede descargar informaci\u00f3n personal sin restricciones. Debido a la falta de control de permisos, un invitado puede acceder a las exportaciones desde el m\u00f3dulo, lo que puede provocar una filtraci\u00f3n de informaci\u00f3n personal de las tablas ps_customer/ps_address, como nombre/apellido/correo electr\u00f3nico/n\u00famero de tel\u00e9fono/direcci\u00f3n postal completa."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://security.friendsofpresta.org/modules/2023/11/28/ordersexport.html",
      "source": "cve@mitre.org"
    }
  ]
}
Auto-Update: 2023-12-07T00:55:18.627053+00:00 2023-12-07 00:55:22 +00:00			`{`
			`"id": "CVE-2023-46354",`
			`"sourceIdentifier": "cve@mitre.org",`
			`"published": "2023-12-06T23:15:07.380",`
Auto-Update: 2023-12-07T13:00:18.258683+00:00 2023-12-07 13:00:21 +00:00			`"lastModified": "2023-12-07T12:12:36.717",`
			`"vulnStatus": "Awaiting Analysis",`
Auto-Update: 2023-12-07T00:55:18.627053+00:00 2023-12-07 00:55:22 +00:00			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "In the module \"Orders (CSV, Excel) Export PRO\" (ordersexport) < 5.2.0 from MyPrestaModules for PrestaShop, a guest can download personal information without restriction. Due to a lack of permissions control, a guest can access exports from the module which can lead to a leak of personal information from ps_customer/ps_address tables such as name / surname / email / phone number / full postal address."`
Auto-Update: 2023-12-07T13:00:18.258683+00:00 2023-12-07 13:00:21 +00:00			`},`
			`{`
			`"lang": "es",`
			"value": "En el m\u00f3dulo \"Orders (CSV, Excel) Export PRO\" (ordersexport) < 5.2.0 de MyPrestaModules para PrestaShop, un invitado puede descargar informaci\u00f3n personal sin restricciones. Debido a la falta de control de permisos, un invitado puede acceder a las exportaciones desde el m\u00f3dulo, lo que puede provocar una filtraci\u00f3n de informaci\u00f3n personal de las tablas ps_customer/ps_address, como nombre/apellido/correo electr\u00f3nico/n\u00famero de tel\u00e9fono/direcci\u00f3n postal completa."
Auto-Update: 2023-12-07T00:55:18.627053+00:00 2023-12-07 00:55:22 +00:00			`}`
			`],`
			`"metrics": {},`
			`"references": [`
			`{`
			`"url": "https://security.friendsofpresta.org/modules/2023/11/28/ordersexport.html",`
			`"source": "cve@mitre.org"`
			`}`
			`]`
			`}`