CVE-2023-47109

PrestaShop blockreassurance BO User can remove any file from server when adding a and deleting a block

Severity Score

8.1

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

PrestaShop blockreassurance adds an information block aimed at offering helpful information to reassure customers that the store is trustworthy. When adding a block in blockreassurance module, a BO user can modify the http request and give the path of any file in the project instead of an image. When deleting the block from the BO, the file will be deleted. It is possible to make the website completely unavailable by removing index.php for example. This issue has been patched in version 5.1.4.

PrestaShop blockreassurance agrega un bloque de información destinado a ofrecer información útil para asegurar a los clientes que la tienda es confiable. Al agregar un bloque en el módulo blockreassurance, un usuario BO puede modificar la solicitud http y proporcionar la ruta de cualquier archivo en el proyecto en lugar de una imagen. Al eliminar el bloque del BO, el archivo se eliminará. Es posible hacer que el sitio web no esté completamente disponible eliminando index.php, por ejemplo. Este problema se solucionó en la versión 5.1.4.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2023-10-30 CVE Reserved
2023-11-08 CVE Published
2024-09-04 CVE Updated
2024-11-14 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-285: Improper Authorization

CAPEC

References (4)

URL	Tag	Source
https://github.com/PrestaShop/blockreassurance/releases/tag/v5.1.4	Release Notes

URL	Date	SRC

URL	Date	SRC
https://github.com/PrestaShop/blockreassurance/commit/2d0e97bebf795690caffe33c1ab23a9bf43fcdfa	2023-11-16
https://github.com/PrestaShop/blockreassurance/commit/eec00da564db4c1804b0a0d1e3d9f7ec4e27d823	2023-11-16

URL	Date	SRC
https://github.com/PrestaShop/blockreassurance/security/advisories/GHSA-83j2-qhx2-p7jc	2023-11-16

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Prestashop Search vendor "Prestashop"		Customer Reassurance Block Search vendor "Prestashop" for product "Customer Reassurance Block"				< 5.1.4 Search vendor "Prestashop" for product "Customer Reassurance Block" and version " < 5.1.4"		prestashop		Affected