Description

PrestaShop 1.6.x before 1.6.1.23 and 1.7.x before 1.7.4.4 on Windows allows remote attackers to write to arbitrary image files.

Remediation

References

CVE-2018-19124

Related Vulnerabilities

MySQL CVE-2019-2774 Vulnerability (CVE-2019-2774)

Oracle Application Server CVE-2009-0996 Vulnerability (CVE-2009-0996)

WordPress Plugin Newsletter-Send awesome emails from WordPress Unspecified Vulnerability (4.1.1)

Envoy Proxy Excessive Iteration Vulnerability (CVE-2021-39204)

WordPress Plugin 3DPrint Lite Arbitrary File Upload (1.9.1.4)

Severity

High

Classification

CVE-2018-19124 CWE-22 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities