VYPR

So Flexibilite

by Prestashop

CVEs (2)

  • CVE-2024-25844Mar 3, 2024
    risk 0.00cvss epss 0.01

    An issue was discovered in Common-Services "So Flexibilite" (soflexibilite) module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file.

  • CVE-2024-25841Feb 27, 2024
    risk 0.00cvss epss 0.00

    In the module "So Flexibilite" (soflexibilite) from Common-Services for PrestaShop < 4.1.26, a guest (authenticated customer) can perform Cross Site Scripting (XSS) injection.