Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
PrestaShop Improper Authentication Vulnerability - CVE-2021-21308 - Vulnerability Database
PrestaShop

PrestaShop Improper Authentication Vulnerability - CVE-2021-21308

Critical
Reference: CVE-2021-21308
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-21308
Title: PrestaShop Improper Authentication Vulnerability
Overview:

PrestaShop is a fully scalable open source e-commerce solution. In PrestaShop before version 1.7.2 the soft logout system is not complete and an attacker is able to foreign request and executes customer commands. The problem is fixed in 1.7.7.2