PrestaShop Improper Authentication Vulnerability - CVE-2020-4074 - Vulnerability Database

PrestaShop Improper Authentication Vulnerability - CVE-2020-4074

Critical

Reference: CVE-2020-4074

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-4074

Title: PrestaShop Improper Authentication Vulnerability

Overview:

In PrestaShop from version 1.5.0.0 and before version 1.7.6.6 the authentication system is malformed and an attacker is able to forge requests and execute admin commands. The problem is fixed in 1.7.6.6.