CVE-2023-50029

Publication date

2024-06-24 00:00:00

Family

mitre

State

PUBLISHED

Description

PHP Injection vulnerability in the module "M4 PDF Extensions" (m4pdf) up to version 3.3.2 from PrestaAddons for PrestaShop allows attackers to run arbitrary code via the M4PDF::saveTemplate() method.