Prestashop: Invoice System Vulnerability - Proactive Insights and Support For Open-Source Applications

In PrestaShop version 8.1.5 a medium severity vulnerability CVE-2024-34717 was detected. A flaw in the invoice system lets anyone access private invoices by tweaking the URL with a random secure key. This risks data breaches and financial discrepancies. Patched in version 8.1.6 with no known workarounds. For more details, visit https://avd.aquasec.com/nvd/2024/cve-2024-34717