Lucene search
GoogleOSV:GHSA-6MHC-HQR3-W466HistoryMay 12, 2023 - 12:30 a.m.
PrestaShop Cross-site Scripting vulnerability
2023-05-1200:30:18
Google
osv.dev
10
cross-site scripting
prestashop
contact form
EPSS
0
Percentile
7.1%
A cross-site scripting (XSS) vulnerability in PrestaShop v1.7.7.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the message parameter in /contactform/contactform.php.
Related
github
github
Duplicate Advisory: PrestaShop Cross-site Scripting vulnerability
2023-05-12 00:30:18
veracode
veracode
Cross-Site Scripting (XSS)
2023-05-30 12:25:55
cvelist
cvelist
CVE-2023-31508
1976-01-01 00:00:00
cve
cve
CVE-2023-31508
2023-05-11 22:15:11
nvd
nvd
CVE-2023-31508
2023-05-11 22:15:11