VYPR
Unrated severityNVD Advisory· Published Feb 4, 2021· Updated Aug 4, 2024

CVE-2020-16194

CVE-2020-16194

Description

An Insecure Direct Object Reference (IDOR) vulnerability was found in Prestashop Opart devis < 4.0.2. Unauthenticated attackers can have access to any user's invoice and delivery address by exploiting an IDOR on the delivery_address and invoice_address fields.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.