PrestaShop Product Comments Cross-site Scripting vulnerability
Moderate severity
GitHub Reviewed
Published
Aug 31, 2022
in
PrestaShop/productcomments
•
Updated Jan 31, 2023
Description
Published to the GitHub Advisory Database
Aug 31, 2022
Reviewed
Aug 31, 2022
Published by the National Vulnerability Database
Sep 2, 2022
Last updated
Jan 31, 2023
Impact
An attacker could steal an admin's cookie
Patches
The issue is fixed in 5.0.2
References
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
References