Unrated severityNVD Advisory· Published Nov 2, 2023· Updated Sep 6, 2024
CVE-2023-46352
CVE-2023-46352
Description
In the module "Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Module" (facebookconversiontrackingplus) up to version 2.4.9 from Smart Modules for PrestaShop, a guest can download personal information without restriction. Due to a lack of permissions control, a guest can access exports from the module which can lead to a leak of personal information from ps_customer table such as name / surname / email.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Smart Modules/Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Moduledescription
- Range: <=2.4.9
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.