Description
PrestaShop 1.7.2.4 allows user enumeration via the Reset Password feature, by noticing which reset attempts do not produce a "This account does not exist" error message.
Remediation
References
Related Vulnerabilities
WordPress Plugin Advanced Custom Fields (ACF) Information Disclosure (6.0.2)
Drupal Core 7.x Remote Code Execution (7.0 - 7.57)
WordPress Plugin My WP Translate Multiple Vulnerabilities (1.0.3)
MySQL CVE-2013-3801 Vulnerability (CVE-2013-3801)
WordPress 2.0.6 'Zend_Hash_Del_Key_Or_Index' SQL Injection Vulnerability (0.6.2 - 2.0.6)