← Back

Op'art Devis

op'art_devis

Vendor: Store Opart • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-48188
1Store Opart
1Op'art Devis
Nov 21, 2024
Nov 27, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
SQL injection vulnerability in PrestaShop opartdevis v.4.5.18 thru v.4.6.12 allows a remote attacker to execute arbitrary code via a crafted script to the getModuleTranslation function.
CVE-2020-16194
1Store Opart
1Op'art Devis
Jan 27, 2026
Feb 4, 2021
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
An Insecure Direct Object Reference (IDOR) vulnerability was found in Prestashop Opart devis < 4.0.2. Unauthenticated attackers can have access to any user's invoice and delivery address by exploiting an IDOR on the deli...Show more
An Insecure Direct Object Reference (IDOR) vulnerability was found in Prestashop Opart devis < 4.0.2. Unauthenticated attackers can have access to any user's invoice and delivery address by exploiting an IDOR on the delivery_address and invoice_address fields.Show less