Description
An issue was discoverd in file controllers/admin/AdminLoginController.php in PrestaShop before 8.2.1 allowing attackers to gain sensitive information via the reset password feature.
Remediation
References
Related Vulnerabilities
WordPress Plugin Export any WordPress data to XML/CSV Arbitrary File Upload (0.9)
osTicket Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-15580)
e107 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-1989)