1 results (0.002 seconds)
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3031 – Prestahop module King-Avis - Path traversal
https://notcve.org/view.php?id=CVE-2023-3031
02 Jun 2023 — Improper Limitation of a Pathname leads to a Path Traversal vulnerability in the module King-Avis for Prestashop, allowing a user knowing the download token to read arbitrary local files.This issue affects King-Avis: before 17.3.15. • https://borelenzo.github.io/stuff/2023/06/01/cve-2023-3031.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •