CVE-2018-19124

CVE-2018-19124

EPSS 2.9%

PrestaShop 1.6.x before 1.6.1.23 and 1.7.x before 1.7.4.4 on Windows allows remote attackers to write to arbitrary image files.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://build.prestashop.com/news/prestashop-1-7-4-4-1-6-1-23-maintenance-releases/https://github.com/PrestaShop/PrestaShop/pull/11285 https://github.com/PrestaShop/PrestaShop/pull/11286