Skip to main content

Sonice Retour

1 CVEs product

Monthly

CVE-2023-45382 HIGH This Week

In the module "SoNice Retour" (sonice_retour) up to version 2.1.0 from Common-Services for PrestaShop, a guest can download personal information without restriction by performing a path traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Sonice Retour
NVD
CVSS 3.1
7.5
EPSS
0.8%
EPSS 1% CVSS 7.5
HIGH This Week

In the module "SoNice Retour" (sonice_retour) up to version 2.1.0 from Common-Services for PrestaShop, a guest can download personal information without restriction by performing a path traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Sonice Retour
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy