CVE-2020-5293

Summary

In PrestaShop between versions 1.7.0.0 and 1.7.6.5, there are improper access controls on product page with combinations, attachments and specific prices. The problem is fixed in 1.7.6.5.

Affected Software

VendorProductVersion RangeStatus
PrestaShopPrestaShop>= 1.7.0.0, < 1.7.6.5affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References