Unrated severityNVD Advisory· Published Jul 2, 2020· Updated Aug 4, 2024

Improper access control in PrestaShop

CVE-2020-15079

Description

In PrestaShop from version 1.5.0.0 and before version 1.7.6.6, there is improper access control in Carrier page, Module Manager and Module Positions. The problem is fixed in version 1.7.6.6

Affected products

Prestashop/Prestashopv5
Range: >= 1.5.0.0, < 1.7.6.6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/PrestaShop/PrestaShop/commit/8833d9504cc5d69a2a6d10197f56f0c11443cbfamitrex_refsource_MISC
github.com/PrestaShop/PrestaShop/security/advisories/GHSA-xp3x-3h8q-c386mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000