Critical severity9.1OSV Advisory· Published Jul 9, 2018· Updated Jun 17, 2026
CVE-2018-13784
CVE-2018-13784
Description
PrestaShop before 1.6.1.20 and 1.7.x before 1.7.3.4 mishandles cookie encryption in Cookie.php, Rinjdael.php, and Blowfish.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.6.0.1, 1.6.0.3, 1.6.1.0, …+ 1 more
- (no CPE)range: 1.6.0.1, 1.6.0.3, 1.6.1.0, …
- (no CPE)range: before 1.6.1.20; 1.7.x before 1.7.3.4
Patches
Vulnerability mechanics
References
5- www.exploit-db.com/exploits/45046/nvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/45047/nvdExploitThird Party AdvisoryVDB Entry
- build.prestashop.com/news/prestashop-1-7-3-4-1-6-1-20-maintenance-releases/nvdVendor Advisory
- github.com/PrestaShop/PrestaShop/pull/9218nvdThird Party Advisory
- github.com/PrestaShop/PrestaShop/pull/9222nvdThird Party Advisory
News mentions
0No linked articles in our index yet.