Intrusion Prevention

PrestaShop.Responsive.Mega.Menu.Module.Remote.Code.Injection

Description

This indicates an attack attempt to exploit a Code Injection Vulnerability in Responsive Mega Menu Pro module for PrestaShop.
The vulnerability is due to improper sanitization of multiple components in HTTP requests. A remote attacker could exploit this vulnerability by sending crafted requests to the target system.

Affected Products

Responsive Mega Menu Pro module 1.0.32 for PrestaShop 1.5.5.0 through 1.7.2.5

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://addons.prestashop.com/en/menu/27075-mega-menu-pro.html

CVE References

CVE-2018-8823