PrestaShop Product Security Update Advisory (CVE-2024-36680)

Jul 18 2024

Overview

PrestaShop has released an update to address a vulnerability in their product. Users of affected versions are advised to update to the latest version.

Affected Products

CVE-2024-36680

PrestaShop pkfacebook version: ~1.0.1 (inclusive)

Resolved Vulnerabilities

Vulnerability that allows guests to perform SQL injection (CVE-2024-36680)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

Refer to the referenced sites[2] to update

Referenced Sites

[1] CVE-2024-36680 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-36680

[2] [CVE-2024-36680] Improper neutralization of SQL parameter in Promokit.eu – Facebook module for PrestaShop

https://security.friendsofpresta.org/modules/2024/06/18/pkfacebook.html

PrestaShop Product Security Update Advisory (CVE-2024-36680)

Atlassian Family July 2024 Security Update Advisory

Google Chrome Browser (126.0.6478.182/183) Security Update Advisory

Tags:

Atlassian Family July 2024 Security Update Advisory

Google Chrome Browser (126.0.6478.182/183) Security Update Advisory