CVE-2025-61923

Published
View on NVD ↗
CVSS v3
4.1
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT

Description

PrestaShop Checkout is the PrestaShop official payment module in partnership with PayPal. In versions prior to 4.4.1 and 5.0.5, the backoffice is missing validation on input resulting in a directory traversal and arbitrary file disclosure. The vulnerability is fixed in versions 4.4.1 and 5.0.5. No known workarounds exist.

PrestaShopCorp/ps_checkout
PrestaShopCorp/ps_checkout
PrestaShop Checkout payment module
GitHubGitHub
37