Florent BESNARD

1 exploit Active since Nov 2020
CVE-2020-9368 WRITEUP HIGH WRITEUP
oleacorner olea_gift_on_order < 5.0.8 - Unauthenticated Path Traversal via getfile.php
The Module Olea Gift On Order module through 5.0.8 for PrestaShop enables an unauthenticated user to read arbitrary files on the server via getfile.php?file=/.. directory traversal.
CVSS 7.5