admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-463xx/CVE-2023-46355.json
cad-safe-bot 1e762b365c Auto-Update: 2023-11-28T00:55:17.995431+00:00
2023-11-28 00:55:21 +00:00

20 lines
859 B
JSON
Raw Blame History

{
"id": "CVE-2023-46355",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-11-27T23:15:07.520",
"lastModified": "2023-11-27T23:15:07.520",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In the module \"CSV Feeds PRO\" (csvfeeds) < 2.6.1 from Bl Modules for PrestaShop, a guest can download personal information without restriction. Due to too permissive access control which does not force administrator to use password on feeds, a guest can access exports from the module which can lead to leaks of personal information from ps_customer / ps_order table such as name / surname / email / phone number / postal address."
}
],
"metrics": {},
"references": [
{
"url": "https://security.friendsofpresta.org/modules/2023/11/23/csvfeeds.html",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue View Git Blame Copy Permalink