CVE-2018-13784

CRITICAL

PrestaShop <1.6.1.20 & <1.7.3.4 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2018-13784. PoCs published by Charles Fol, ambionics.

AI-analyzed exploit summary This exploit targets a privilege escalation vulnerability in PrestaShop <= 1.6.1.19 by manipulating cookie encryption to associate a customer account with an employee account, potentially granting backoffice access if passwords match.

Description

PrestaShop before 1.6.1.20 and 1.7.x before 1.7.3.4 mishandles cookie encryption in Cookie.php, Rinjdael.php, and Blowfish.php.

Exploits (3)

exploitdb WORKING POC
by Charles Fol · textwebappsphp
https://www.exploit-db.com/exploits/45047

This exploit targets a privilege escalation vulnerability in PrestaShop <= 1.6.1.19 by manipulating cookie encryption to associate a customer account with an employee account, potentially granting backoffice access if passwords match.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Complex
Reliability
Racy
Target: PrestaShop <= 1.6.1.19
Auth required
Prerequisites: Valid customer credentials · An employee account with the same password as the customer
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by Charles Fol · pythonwebappsphp
https://www.exploit-db.com/exploits/45046

This exploit performs a padding oracle attack on PrestaShop's AES-encrypted cookies to decrypt employee session cookies, enabling privilege escalation or session hijacking. It leverages the application's error responses to decrypt the cookie block-by-block.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: PrestaShop <= 1.6.1.19
Auth required
Prerequisites: Valid employee session cookie · Access to the PrestaShop admin interface
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 48 stars
by ambionics · poc
https://github.com/ambionics/prestashop-exploits

This repository contains a working proof-of-concept exploit for CVE-2018-13784, targeting PrestaShop's cookie encryption vulnerabilities. It includes padding oracle attacks for AES-CBC and Blowfish-ECB encryption methods to decrypt and manipulate employee cookies.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: PrestaShop <= 1.6.1.19
Auth required
Prerequisites: Valid employee cookie · Access to the PrestaShop admin panel URL
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45046/
Third Party Advisory x_refsource_misc
https://github.com/PrestaShop/PrestaShop/pull/9222
Third Party Advisory x_refsource_misc
https://github.com/PrestaShop/PrestaShop/pull/9218
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45047/

Scores

CVSS v3 9.1
EPSS 0.1667
EPSS Percentile 96.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Details

Status published
Products (1)
prestashop/prestashop < 1.6.1.20
Published Jul 09, 2018
Tracked Since Feb 18, 2026