CVE-2025-51586

Low CVSS: 3.7

An issue was discoverd in file controllers/admin/AdminLoginController.php in PrestaShop before 8.2.1 allowing attackers to gain sensitive information via the reset password feature.

Vendor

Prestashop

Product

Prestashop

CWE

CWE-359

Yayın Tarihi

2025-09-08 17:15:33

Güncelleme

2025-09-12 20:49:23

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-359 Prestashop LOW Prestashop 2025

Referanslar

https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.1 https://maxime-morel.github.io/advisories/2025/CVE-2025-51586.md https://prestashop.com/

Benzer Kayıtlar

High

CVE-2026-33673

PrestaShop is an open source e-commerce web application. Versions prior to 8.2.5 and 9.1.0 are vulnerable to stored Cros…

Low

CVE-2026-33674

PrestaShop is an open source e-commerce web application. Versions prior to 8.2.5 and 9.1.0 improperly use the validation…

Medium

CVE-2026-25597

PrestaShop is an open source e-commerce web application. Prior to 8.2.4 and 9.0.3, there is a time-based user enumeratio…

Low

CVE-2025-61924

PrestaShop Checkout is the PrestaShop official payment module in partnership with PayPal. In versions prior to 4.4.1 and…

Critical

CVE-2025-61922

PrestaShop Checkout is the PrestaShop official payment module in partnership with PayPal. Starting in version 1.3.0 and…

Medium

CVE-2025-61923

PrestaShop Checkout is the PrestaShop official payment module in partnership with PayPal. In versions prior to 4.4.1 and…