Myprestamodules Myprestamodules

  1. Vendors
  2. Myprestamodules

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Myprestamodules product.

RSS Feeds for Myprestamodules security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Myprestamodules products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Myprestamodules Sorted by Most Security Vulnerabilities since 2018

Myprestamodules Exportproducts2 vulnerabilities

Myprestamodules Orders Csv Excel Export Pro2 vulnerabilities

Myprestamodules Cross Selling In Modal Cart1 vulnerability

Myprestamodules Frequently Asked Questions Page1 vulnerability

Myprestamodules Orders Csv Excel Export1 vulnerability

Myprestamodules Product Catalog Csv Excel Import1 vulnerability

Myprestamodules Updateproducts1 vulnerability

By the Year

In 2026 there have been 0 vulnerabilities in Myprestamodules. Myprestamodules did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2026 0 0.00
2025 0 0.00
2024 2 0.00
2023 7 9.00

It may take a day or so for new Myprestamodules vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Myprestamodules Security Vulnerabilities

CVE Date Vulnerability Products
CVE-2024-28396 Mar 20, 2024
Remote Code Execution via Download.php in MyPrestaModules ordersexport <6.0.2 An issue in MyPrestaModules ordersexport v.6.0.2 and before allows a remote attacker to execute arbitrary code via the download.php component.
Orders Csv Excel Export Pro
CVE-2024-25847 Mar 03, 2024
PrestaShop <6.5.0 SimpleImportProduct SQLi + privilege escalation SQL Injection vulnerability in MyPrestaModules "Product Catalog (CSV, Excel) Import" (simpleimportproduct) modules for PrestaShop versions 6.5.0 and before, allows attackers to escalate privileges and obtain sensitive information via Send::__construct() and importProducts::_addDataToDb methods.
Product Catalog Csv Excel Import
CVE-2023-46354 Dec 06, 2023
PrestaShop OrderExport PRO <5.2.0 Guest Data Leak via CSV/Excel Exports In the module "Orders (CSV, Excel) Export PRO" (ordersexport) < 5.2.0 from MyPrestaModules for PrestaShop, a guest can download personal information without restriction. Due to a lack of permissions control, a guest can access exports from the module which can lead to a leak of personal information from ps_customer/ps_address tables such as name / surname / email / phone number / full postal address.
Orders Csv Excel Export Pro
CVE-2023-46349 Nov 27, 2023
SQLi in MyPrestaModules Product Catalog CSV Export (<3.8.5) In the module "Product Catalog (CSV, Excel) Export/Update" (updateproducts) < 3.8.5 from MyPrestaModules for PrestaShop, a guest can perform SQL injection. The method `productsUpdateModel::getExportIds()` has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection.
Updateproducts
CVE-2023-46357 Nov 22, 2023
SQLi in MyPrestaModules Cross Selling Modal Cart <3.5.0 (motivationsale) In the module "Cross Selling in Modal Cart" (motivationsale) < 3.5.0 from MyPrestaModules for PrestaShop, a guest can perform SQL injection. The method `motivationsaleDataModel::getProductsByIds()` has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL injection.
Cross Selling In Modal Cart
CVE-2023-45387 Nov 17, 2023
SQLi in ProductCatalogExportPRO <=5.0.0 (exportProduct::_addDataToDb()) In the module "Product Catalog (CSV, Excel, XML) Export PRO" (exportproducts) in versions up to 5.0.0 from MyPrestaModules for PrestaShop, a guest can perform SQL injection via `exportProduct::_addDataToDb().`
Exportproducts
CVE-2023-40923 Nov 15, 2023
SQLi in MyPrestaModules ordersexport <5.0 via send.php MyPrestaModules ordersexport before v5.0 was discovered to contain multiple SQL injection vulnerabilities at send.php via the key and save_setting parameters.
Orders Csv Excel Export
CVE-2023-46346 Oct 25, 2023
MyPrestaModules exportproducts v<4.1.1 Path Traversal Data Leak In the module "Product Catalog (CSV, Excel, XML) Export PRO" (exportproducts) in versions up to 4.1.1 from MyPrestaModules for PrestaShop, a guest can download personal information without restriction by performing a path traversal attack. Due to a lack of permissions control and a lack of control in the path name construction, a guest can perform a path traversal to view all files on the information system.
Exportproducts
CVE-2023-26858 Mar 31, 2023
PrestaShop faqs 3.1.6 SQLi in displayAjaxGenerateBudget SQL injection vulnerability found in PrestaSHp faqs v.3.1.6 allows a remote attacker to escalate privileges via the faqsBudgetModuleFrontController::displayAjaxGenerateBudget component.
Frequently Asked Questions Page
Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.