Unrated severityNVD Advisory· Published Apr 20, 2020· Updated Aug 4, 2024
Improper access control on product page with combinations, attachments and specific prices in PrestaShop
CVE-2020-5293
Description
In PrestaShop between versions 1.7.0.0 and 1.7.6.5, there are improper access controls on product page with combinations, attachments and specific prices. The problem is fixed in 1.7.6.5.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=1.7.0.0, <1.7.6.5+ 1 more
- (no CPE)range: >=1.7.0.0, <1.7.6.5
- (no CPE)range: >= 1.7.0.0, < 1.7.6.5
Patches
Vulnerability mechanics
References
2- github.com/PrestaShop/PrestaShop/commit/f9f442c87755908e23a6bcba8c443cdea1d78a7fmitrex_refsource_MISC
- github.com/PrestaShop/PrestaShop/security/advisories/GHSA-cvjj-grfv-f56wmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.