CVE-2020-15079

Summary

In PrestaShop from version 1.5.0.0 and before version 1.7.6.6, there is improper access control in Carrier page, Module Manager and Module Positions. The problem is fixed in version 1.7.6.6

Affected Software

VendorProductVersion RangeStatus
PrestaShopPrestaShop>= 1.5.0.0, < 1.7.6.6affected

Weaknesses

  • CWE-284: {"CWE-284":"Improper Access Control"}

ADP Enrichment

CVE Program Container

Additional References

References