2020-01-23 14:23:59
mitre
PUBLISHED
PrestaShop 1.5.5 allows remote authenticated attackers to execute arbitrary code by uploading a crafted profile and then accessing it in the module/ directory.