GCVE - cpe:2.3:a:prestashop:prestashop:0.9.6:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:prestashop:prestashop:0.9.6:*:*:*:*:*:*:*

part: a version: 0.9.6 update: *

Vendor	Prestashop (`236a7260-6e18-5f0f-b33a-a013be210d8c`)
Product	Prestashop (`c9530676-cecc-5a16-afb2-ff937ae35f7e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:composer/prestashop/prestashop`	purl2cpe	2026-06-01 10:15:07.971344
`pkg:docker/prestashop/prestashop`	purl2cpe	2026-06-01 10:15:07.971346
`pkg:github/prestashop/prestashop`	purl2cpe	2026-06-01 10:15:07.971347

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2011-4544`	vulnerable	2026-06-03 14:31:25.244236	Details available Multiple cross-site scripting (XSS) vulnerabilities in Prestashop before 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) address or (2) relativ_base_dir parameter to modules/mondialrelay/googlemap.php; the (3) relativ_base_dir, (4) Pays, (5) Ville, (6) CP, (7) Poids, (8) Action, or (9) num parameter to prestashop/modules/mondialrelay/googlemap.php; (10) the num_mode parameter to modules/mondialrelay/kit_mondialrelay/RechercheDetailPointRelais_ajax.php; (11) the Expedition parameter to modules/mondialrelay/kit_mondialrelay/SuiviExpedition_ajax.php; or the (12) folder or (13) name parameter to admin/ajaxfilemanager/ajax_save_text.php. Published: 2011-12-01T21:00:00.000Z Updated: 2024-08-07T00:09:18.783Z Open on db.gcve.eu Reference links https://www.dognaedis.com/vulns/DGS-SEC-6.html http://www.securityfocus.com/bid/50784 https://www.dognaedis.com/vulns/DGS-SEC-5.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-5791`	vulnerable	2026-06-03 14:29:11.248312	Details available Multiple unspecified vulnerabilities in PrestaShop e-Commerce Solution before 1.1 Beta 2 (aka 1.1.0.1) have unknown impact and attack vectors, related to the (1) bankwire module, (2) cheque module, and other components. Published: 2008-12-31T11:00:00.000Z Updated: 2024-08-07T11:04:44.701Z Open on db.gcve.eu Reference links http://sourceforge.net/project/shownotes.php?release_id=638105 http://www.securityfocus.com/bid/32184 http://secunia.com/advisories/32486 https://exchange.xforce.ibmcloud.com/vulnerabilities/46425 http://www.prestashop.com/download/changelog_1.1.0.1.txt	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.