VYPR
Moderate severityNVD Advisory· Published Feb 19, 2024· Updated Aug 1, 2024

Prestashop vulnerable to path disclosure in JavaScript variable

CVE-2024-26129

Description

PrestaShop is an open-source e-commerce platform. Starting in version 8.1.0 and prior to version 8.1.4, PrestaShop is vulnerable to path disclosure in a JavaScript variable. A patch is available in version 8.1.4.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
prestashop/prestashopPackagist
>= 8.1.0, < 8.1.48.1.4

Affected products

3

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.