CVE-2024-33270

None

Description

An issue in FME Modules fileuploads v.2.0.3 and before and fixed in v2.0.4 allows a remote attacker to obtain sensitive information via the uploadfiles.php component.

INFO

Published Date :

2024-04-30T00:00:00.000Z

Last Modified :

2024-11-01T16:04:57.189Z

Source :

mitre

AFFECTED PRODUCTS

The following products are affected by CVE-2024-33270 vulnerability.

Vendors	Products
Prestashop	Prestashop

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-33270.

URL	Resource
http://fileuploads.com
http://fme.com
https://addons.prestashop.com/en/additional-information-product-tab/21373-customer-file-upload-attach-file-on-productcart-pages.html
https://security.friendsofpresta.org/modules/2024/04/29/fileuploads.html

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact