PrestaShop Improper Authentication Vulnerability (CVE-2020-15079) - Vulnerability Database

PrestaShop Improper Authentication Vulnerability (CVE-2020-15079)

Description

In PrestaShop from version 1.5.0.0 and before version 1.7.6.6, there is improper access control in Carrier page, Module Manager and Module Positions. The problem is fixed in version 1.7.6.6

References

CVE-2020-15079

Related Vulnerabilities

Severity

Medium

Classification

CVE-2020-15079

CWE-287

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N