← back
CVE-2023-39677

CVE-2023-39677

EPSS 30.8%CWE-200
Vexday Risk Score
15Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 30.8%KEV nãoPoC Patch
Lifecycle
Sep 20, 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
MyPrestaModules Prestashop Module v6.2.9 and UpdateProducts Prestashop Module v3.6.9 were discovered to contain a PHPInfo information disclosure vulnerability via send.php.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.sorcery.ie/posts/myprestamodules_phpinfo/https://myprestamodules.com/https://sorcery.ie