2 matches found
PrestaShop <= 1.7.2.4 Multiple Vulnerabilities
PrestaShop is prone to multiple vulnerabilities. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2018-5682
PrestaShop 1.7.2.4 is affected by CVE-2018-5682: the reset-password flow enables user enumeration by observing which password reset attempts do not emit the generic “This account does not exist” message. Affected component is the Reset Password feature; root cause is inconsistent error messaging ...