Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-51586

An issue was discoverd in file controllers/admin/AdminLoginController.php in PrestaShop before 8.2.1 allowing attackers to gain sensitive information via the reset password feature.

Published

2025-09-08T17:15:33.830

Last Modified

2025-09-12T20:49:23.253

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 3.7 (LOW)

Weaknesses

Type: Secondary
CWE-359

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	prestashop	prestashop	< 8.2.1	Yes

References

https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.1 Release Notes ([email protected])
https://maxime-morel.github.io/advisories/2025/CVE-2025-51586.md Third Party Advisory ([email protected])
https://prestashop.com/ Product ([email protected])