CVE-2024-25842

Publication date

2024-03-03 00:00:00

Family

mitre

State

PUBLISHED

Description

An issue was discovered in Presta World "Account Manager - Sales Representative & Dealers - CRM" (prestasalesmanager) module for PrestaShop before version 9.0, allows remote attackers to escalate privilege and obtain sensitive information via the uploadLogo() and postProcess methods.