Description PrestaShop 1.5.5 vulnerable to privilege escalation via a Salesman account via upload module Remediation References CVE-2013-6295 Related Vulnerabilities Sqlite Other Vulnerability (CVE-2019-19959) SharePoint URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-1323) WordPress Plugin Mega Menu for WordPress-AP Mega Menu includes Backdoor [Only if downloaded via the vendor website] (3.0.5) MySQL CVE-2022-21323 Vulnerability (CVE-2022-21323) MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-6727) Severity Critical Classification CVE-2013-6295 CWE-269 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities