Security Advisory

CVE-2014-2009

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-09-12 14:00:00

Last updated 2024-08-06 09:58:16

Assigner mitre

State PUBLISHED

Description

The mPAY24 payment module before 1.6 for PrestaShop allows remote attackers to obtain credentials, the installation path, and other sensitive information via a direct request to api/curllog.log.

← Browse all CVEs View on cve.org ↗