First published: Mon Apr 20 2020(Updated: )
In PrestaShop between versions 1.7.0.0 and 1.7.6.5, there are improper access controls on product page with combinations, attachments and specific prices. The problem is fixed in 1.7.6.5.
Credit: security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
Prestashop Prestashop | >1.7.0.0<1.7.6.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2020-5293.
The title of this vulnerability is 'Improper Access Controls in PrestaShop Product Page'.
CVE-2020-5293 has a severity value of 6.5 (medium).
PrestaShop versions between 1.7.0.0 and 1.7.6.5 are affected by CVE-2020-5293.
To fix CVE-2020-5293, update PrestaShop to version 1.7.6.5 or higher.