CVE-2020-4074

Published: 2020-07-02T17:15Z

Last Modified: 2024-11-21T05:32Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In PrestaShop from version 1.5.0.0 and before version 1.7.6.6, the authentication system is malformed and an attacker is able to forge requests and execute admin commands. The problem is fixed in 1.7.6.6. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt