hacktricks/network-services-pentesting/pentesting-web/prestashop.md
2024-12-12 11:39:29 +01:00

2.7 KiB

PrestaShop

{% hint style="success" %} Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks
{% endhint %}

From XSS to RCE

  • PrestaXSRF: PrestaShop Exploitation Script that elevate XSS to RCE or Others Critical Vulnerabilities. For more info check this post. It provides provides support for PrestaShop Versions 8.X.X and 1.7.X.X, and allows to:
    • (RCE) PSUploadModule(); - Upload a custom Module: Upload a Persistent Module (backdoor) to PrestaShop.

{% hint style="success" %} Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks
{% endhint %}