First published: Thu Feb 13 2020(Updated: )
PrestaShop before 1.4.11 allows logout CSRF.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Prestashop Prestashop | <1.4.11 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-4792 is a vulnerability in PrestaShop before version 1.4.11 that allows logout cross-site request forgery (CSRF).
CVE-2013-4792 has a severity rating of 5.5 (medium).
CVE-2013-4792 affects PrestaShop versions up to and exclusive of 1.4.11.
CVE-2013-4792 is associated with CWE-352 (Cross-Site Request Forgery (CSRF)).
Yes, you can find more information about CVE-2013-4792 in this blog post: http://davidsopaslabs.blogspot.com/2013/07/prestashop-persistent-xss-and-csrf.html