How severe is CVE-2025-51586?

CVE-2025-51586 has a CVSS v3 score of 3.7 (LOW).

CVE-2025-51586

Name: prestashop
Author: prestashop

3.7LOW

An issue was discoverd in file controllers/admin/AdminLoginController.php in PrestaShop before 8.2.1 allowing attackers to gain sensitive information via the reset password feature.

Publicado: 9/8/2025Actualizado: 9/12/2025

Descripción

An issue was discoverd in file controllers/admin/AdminLoginController.php in PrestaShop before 8.2.1 allowing attackers to gain sensitive information via the reset password feature.

Análisis IAImpulsado por IA

Productos Afectados

prestashopprestashop

Referencias

https://github.com/PrestaShop/PrestaShop/releases/tag/8.2.1
Release Notes
https://maxime-morel.github.io/advisories/2025/CVE-2025-51586.md
Third Party Advisory
https://prestashop.com/
Product