PrestaShop 8.2.0

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:prestashop:prestashop:8.2.0:*:*:*:*:*:*:*

part: a version: 8.2.0 update: *

VendorPrestashop (236a7260-6e18-5f0f-b33a-a013be210d8c)
ProductPrestashop (c9530676-cecc-5a16-afb2-ff937ae35f7e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:composer/prestashop/prestashop purl2cpe 2026-06-01 10:15:07.972177
pkg:docker/prestashop/prestashop purl2cpe 2026-06-01 10:15:07.972179
pkg:github/prestashop/prestashop purl2cpe 2026-06-01 10:15:07.972180

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-25692 vulnerable 2026-06-03 14:59:58.560204 Details available
A PHAR deserialization vulnerability in the _getHeaders function of PrestaShop v8.2.0 allows attackers to execute arbitrary code via a crafted POST request.
Published: 2025-07-30T00:00:00.000Z
Updated: 2025-07-30T18:55:36.333Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-25691 vulnerable 2026-06-03 14:59:58.559714 Details available
A PHAR deserialization vulnerability in the component /themes/import of PrestaShop v8.2.0 allows attackers to execute arbitrary code via a crafted POST request.
Published: 2025-07-30T00:00:00.000Z
Updated: 2025-07-30T18:59:02.330Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.