Home

Description

An issue in Advanced Plugins reportsstatistics v1.3.20 and before allows a remote attacker to execute arbitrary code via the Sales Reports, Statistics, Custom Fields & Export module.

PUBLISHED Reserved 2024-03-08 | Published 2024-03-19 | Updated 2024-10-28 | Assigner mitre

References

addons.prestashop.com/...tatistics-custom-fields-export.html

security.friendsofpresta.org/...03/14/reportsstatistics.html

cve.org (CVE-2024-28394)

nvd.nist.gov (CVE-2024-28394)

Download JSON