Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
PrestaShop Improper Authentication Vulnerability - CVE-2020-4074 - Vulnerability Database
PrestaShop

PrestaShop Improper Authentication Vulnerability - CVE-2020-4074

Critical
Reference: CVE-2020-4074
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-4074
Title: PrestaShop Improper Authentication Vulnerability
Overview:

In PrestaShop from version 1.5.0.0 and before version 1.7.6.6 the authentication system is malformed and an attacker is able to forge requests and execute admin commands. The problem is fixed in 1.7.6.6.