Количество 2
Количество 2
CVE-2026-25597
PrestaShop is an open source e-commerce web application. Prior to 8.2.4 and 9.0.3, there is a time-based user enumeration vulnerability in the user authentication functionality of PrestaShop. This vulnerability allows an attacker to determine whether a customer account exists in the system by measuring response times. This vulnerability is fixed in 8.2.4 and 9.0.3.
GHSA-67v7-3g49-mxh2
PrestaShop affected by time based enumeration in FO login form
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-25597 PrestaShop is an open source e-commerce web application. Prior to 8.2.4 and 9.0.3, there is a time-based user enumeration vulnerability in the user authentication functionality of PrestaShop. This vulnerability allows an attacker to determine whether a customer account exists in the system by measuring response times. This vulnerability is fixed in 8.2.4 and 9.0.3. | CVSS3: 5.3 | 0% Низкий | 2 дня назад |
| GHSA-67v7-3g49-mxh2 PrestaShop affected by time based enumeration in FO login form | CVSS3: 5.3 | 0% Низкий | 5 дней назад |
Уязвимостей на страницу