Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tshirtecommerce custom product designer vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-27639
An issue exists in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter file_name in the tshirtecommerce/ajax.php?type=svg endpoint, to allow a remote malicious user to traverse directories on the ...
Tshirtecommerce Custom Product Designer
7.5
CVSSv3
CVE-2023-27640
An issue exists in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter type in the /tshirtecommerce/fonts.php endpoint, to allow a remote malicious user to traverse directories on the system in or...
Tshirtecommerce Custom Product Designer
9.8
CVSSv3
CVE-2023-27637
An issue exists in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with a compromised product_id GET parameter in order to exploit an insecure parameter in the front controller file designer.php, which could lead to ...
Tshirtecommerce Custom Product Designer 2.1.4
9.8
CVSSv3
CVE-2023-27638
An issue exists in the tshirtecommerce (aka Custom Product Designer) component 2.1.4 for PrestaShop. An HTTP request can be forged with a compromised tshirtecommerce_design_cart_id GET parameter in order to exploit an insecure parameter in the functions hookActionCartSave and upd...
Tshirtecommerce Custom Product Designer 2.1.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started