First published: Mon Apr 20 2020(Updated: )
"In PrestaShop between versions 1.7.0.0 and 1.7.6.5, there is improper access controls on product attributes page. The problem is fixed in 1.7.6.5.
Credit: security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
Prestashop Prestashop | >1.7.0.0<1.7.6.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2020-5288 is medium with a CVSS score of 6.5.
To fix CVE-2020-5288, you should update your PrestaShop installation to version 1.7.6.5 or newer.
The CVE ID for the vulnerability in PrestaShop is CVE-2020-5288.
The CWE ID for the vulnerability in PrestaShop is CWE-863 and CWE-284.
You can find more information about CVE-2020-5288 on the GitHub page for PrestaShop, as well as in the associated security advisories.