In PrestaShop between versions 1.5.5.0 and 1.7.6.5, there is improper access control on customers search. The problem is fixed in 1.7.6.5.
References
Link | Resource |
---|---|
https://github.com/PrestaShop/PrestaShop/commit/27e49d89808f1d76eb909a595f344a6739bc0b52 | Patch Third Party Advisory |
https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-r6rp-6gv6-r9hq | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2020-04-20T16:55:27
Updated: 2020-04-20T16:55:27
Reserved: 2020-01-02T00:00:00
Link: CVE-2020-5287
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-04-20T17:15:16.180
Modified: 2020-04-27T17:54:00.527
Link: CVE-2020-5287
JSON object: View
Redhat Information
No data.