❈ Opart Devis up to 4.0.1 on PrestaShop delivery_address/invoice_address resource injection

➤ Weitere Beiträge von Team Security | IT Sicherheit

Added escaping to several admin controllers and send mail to prevent XSS

vom 1504.1 Punkte ic_school_black_18dp
Several sections in admin controllers and send mail were not properly escaped against XSS. This vulnerability affects the following application versions: PrestaShop 1.6.0.1 PrestaShop 1.6.0.1 alpha

External control of configuration setting in the dashboard

vom 1504.1 Punkte ic_school_black_18dp
Remove unwanted update in dashboard controller. This vulnerability affects the following application versions: PrestaShop 1.6.0.1 PrestaShop 1.6.0.1 alpha 1 PrestaShop 1.6.0.2

Introducing type casting for ids to prevent XSS

vom 1476.5 Punkte ic_school_black_18dp
Always cast integer when it's related to ids on AdminAttributesGroupsController to avoid XSS. This vulnerability affects the following application versions: PrestaShop 1.6.0.1 PrestaShop 1.6.0.1 alpha 1 P

Added escaping to the confirmation link to prevent XSS

vom 1476.5 Punkte ic_school_black_18dp
The onclick confirmation link wasn't properly escaped against XSS. This vulnerability affects the following application versions: PrestaShop 1.6.0.1 PrestaShop 1.6.0.1 alpha 1 P

Escaping added to extended exception message to avoid XSS

vom 1421.31 Punkte ic_school_black_18dp
The extended exception message wasn't properly escaped against XSS. This vulnerability affects the following application versions: PrestaShop 1.6.0.3 PrestaShop 1.6.0.3 beta 1 PrestaShop 1.6.0.4

Fix filemanager security breaches and extra file type check

vom 1159.12 Punkte ic_school_black_18dp
Fix security breaches in TinyMCE filemanager plugin. Remove filemanager action image_size. Check mime type when uploading files. Fixed arbitrary image write/overwrite in Windows installation. Prevent image directory deletion. This vulnerability affects t

Added escaping to the templates to avoid XSS

vom 1062.53 Punkte ic_school_black_18dp
The admin templates were not properly sanitized which could result in an XSS attack. This vulnerability affects the following application versions: PrestaShop 1.6.0.12 PrestaShop 1.6.0.13 PrestaShop 1.6.

Strengthening secret key and check password hash

vom 952.14 Punkte ic_school_black_18dp
The secret key for the customer wasn't that strong and customer's password was not checked since login. This vulnerability affects the following application versions: PrestaShop 1.6.0.3 PrestaShop 1.6.0.3 beta 1

Improper access control with submitReorder function

vom 786.55 Punkte ic_school_black_18dp
An attacker was able to list all the orders placed on the website without being logged by abusing the function that allowed a shopping cart to be recreated from an order already placed. This vulnerability affects the following application versions:

Reflected XSS when uploading an image in the product page

vom 745.15 Punkte ic_school_black_18dp
If a target sends a corrupted file, it leads to a reflected XSS. This vulnerability affects the following application versions: PrestaShop 1.7.0.0 PrestaShop 1.7.0.0 beta1 PrestaShop 1.7.

Added access check for isFree table in admin section to prevent unauthorized access

vom 745.15 Punkte ic_school_black_18dp
Access to isFree table in admin section wasn't properly checked. This vulnerability affects the following application versions: PrestaShop 1.7.0.0 PrestaShop 1.7.0.0 beta1 PrestaShop 1.7.

Adding permission check for admin order edits and legacy controller to prevent unauthenticated usage

vom 717.55 Punkte ic_school_black_18dp
Missing permission checks could lead to unauthorized usage in the admin section through the API. This vulnerability affects the following application versions: PrestaShop 1.7.0.0 PrestaShop 1.7.0.0 beta1

Team Security Diskussion über Opart Devis up to 4.0.1 on PrestaShop delivery_address/invoice_address resource injection