Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tshirtecommerce custom product designer 2.1.4 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-27637
An issue exists in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with a compromised product_id GET parameter in order to exploit an insecure parameter in the front controller file designer.php, which could lead to ...
Tshirtecommerce Custom Product Designer 2.1.4
9.8
CVSSv3
CVE-2023-27638
An issue exists in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with a compromised tshirtecommerce_design_cart_id GET parameter in order to exploit an insecure parameter in the functions hookActionCartSave and upd...
Tshirtecommerce Custom Product Designer 2.1.4
7.5
CVSSv3
CVE-2023-27640
An issue exists in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter type in the /tshirtecommerce/fonts.php endpoint, to allow a remote malicious user to traverse directories on the system in or...
Tshirtecommerce Custom Product Designer
7.5
CVSSv3
CVE-2023-27639
An issue exists in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter file_name in the tshirtecommerce/ajax.php?type=svg endpoint, to allow a remote malicious user to traverse directories on the ...
Tshirtecommerce Custom Product Designer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started