CVE-2018-5682

2018-01-13T05:29:00
ID CVE-2018-5682
Type cve
Reporter cve@mitre.org
Modified 2018-01-31T15:51:00

Description

PrestaShop 1.7.2.4 allows user enumeration via the Reset Password feature, by noticing which reset attempts do not produce a "This account does not exist" error message.