Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.1% forks on packagist.org

packagist.org : prestashop/prestashop

PrestaShop is an Open Source e-commerce platform, committed to providing the best shopping cart experience for both merchants and customers.

Registry - Source - JSON
purl: pkg:composer/prestashop/prestashop
Keywords: cms, ecommerce, ecommerce-framework, ecommerce-platform, hacktoberfest, php, php-framework, prestashop
License: OSL-3.0
Latest release: 3 months ago
First release: almost 8 years ago
Namespace: prestashop
Dependent repositories: 2
Downloads: 3,689 total
Stars: 7,801 on GitHub
Forks: 4,715 on GitHub
See more repository details: repos.ecosyste.ms
Last synced: about 20 hours ago

Critical
GSA_kwCzR0hTQS1tcnE0LTdjaDctMjQ2Nc0mqQ
Server Side Twig Template Injection
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: over 2 years ago
High
GSA_kwCzR0hTQS04cjRtLTVwNnAtNTJycM4AAy-t
Arbitrary file read via SQL injection
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS0ycmY1LTNmdzgtcW00N84AA1LZ
PrestaShop file deletion via attachment API
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS02Z3J2LWh3OGctNGdmbc4AAg0f
PrestaShop Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1xdjZoLXBjZjItMnczZ84AAtlX
Duplicate Advisory GHSA-hrgx-p36p-89q4
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: almost 2 years ago
Withdrawn: almost 2 years ago
Moderate
GSA_kwCzR0hTQS0zZzQzLXg3cXItOTZwaM4AAyE0
Possible CSRF token fixation
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS03NXA1LWp3eDQtcXc5aM4AA1LU
PrestaShop boolean SQL injection
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS0zMzY2LTkyODctN3Fwcs4AA5Zv
Path disclosure in JavaScript variable
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS02am1mLTJwZmMtcTltN84AA2IA
PrestaShop allows users to uninstall modules from backoffice, even with low rights
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 8 months ago
Moderate
GSA_kwCzR0hTQS1ndnJnLTYyanAtcmY3as4AA2H_
PrestaShop allows employee without any access rights to list all installed modules
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 8 months ago
High
GSA_kwCzR0hTQS14Z3BtLXEzbXEtNDZycc4AA4Lv
PrestaShop some attribute not escaped in Validate::isCleanHTML method
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS03cGpyLTJyZ2gtZmM1Z84AA8ES
Anonymous PrestaShop customer can download other customers' invoices
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 12 days ago
Critical
GSA_kwCzR0hTQS00NXZtLTNqMzgtN3A3OM4AA8ER
PrestaShop cross-site scripting via customer contact form in FO, through file upload
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 12 days ago
Moderate
GSA_kwCzR0hTQS1tOXI0LTNmZzctcHFtMs4AA1LV
PrestaShop path traversal
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1ocGY0LXY3djItOTVwMs4AA1LY
PrestaShop file access through path traversal
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 10 months ago
High
GSA_kwCzR0hTQS14eDY3LTJqM3YtaDc2cM4AAUSH
PrestaShop PHP Object Injection
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 2 years ago
High
GSA_kwCzR0hTQS14dzJyLWY4eHYtYzh4cM4AA1LX
PrestaShop XSS injection through Validate::isCleanHTML method
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 10 months ago
High
GSA_kwCzR0hTQS1maDdyLTk5NnEtZ3ZjcM4AAy9g
Possible XSS injection through Validate::isCleanHTML method
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS12NGdyLXY2NzktNDJwN84AA1La
PrestaShop file deletion via CustomerMessage
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 10 months ago
Critical
GSA_kwCzR0hTQS1nZjQ2LXBybTQtNTZwY84AA1LW
PrestaShop SQL manager vulnerability
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1jcnBnLTJtbTItampxZs3hdA
PrestaShop Stored Cross-Site Scripting Vulnerability
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1qMzNtLTI1MzctODZqbc1AyA
PrestaShop XSS Vulnerability
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02bWhjLWhxcjMtdzQ2Ns4AAzTH
Duplicate Advisory: PrestaShop Cross-site Scripting vulnerability
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 1 year ago
Withdrawn: 12 months ago
Moderate
GSA_kwCzR0hTQS05cWdwLTl3d2MtdjI5cs4AAwNW
PrestaShop has potential Information exposure in the upload directory
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS12cjdtLXI5dm0tbTR3Zs4AA4Lz
PrestaShop XSS can be stored in DB from "add a message form" in order detail page (FO)
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: 5 months ago
High
GSA_kwCzR0hTQS02eHhqLWdjanEtd2dmNM0ZdA
SQL injection in prestashop/prestashop
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: over 2 years ago
Critical
GSA_kwCzR0hTQS1ocmd4LXAzNnAtODlxNM4AAtvN
PrestaShop eval injection possible if shop vulnerable to SQL injection
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1wMzc5LWN4cWgtcTgyMs4AAy9f
SQL filter bypass leading to arbitrary write requests using "SQL Manager"
Ecosystems: packagist
Packages: prestashop/prestashop
Source: github
Published: about 1 year ago