Stored XSS with custom URLs in PrestaShop module ps_linklist

2021-10-1216:01:36

Google

osv.dev

0.001 Low

EPSS

Percentile

19.4%

JSON

Impact

Stored XSS when using custom URLs.

Patches

The problem is fixed in 3.1.0

References

Cross-site Scripting (XSS) - Stored (CWE-79)

CPENameOperatorVersion
prestashop/ps_linklisteq3.0.3
prestashop/ps_linklisteq1.2.0
prestashop/ps_linklisteq1.1.0
prestashop/ps_linklisteq2.1.2
prestashop/ps_linklisteq3.0.0
prestashop/ps_linklisteq2.1.6
prestashop/ps_linklisteq3.0.2
prestashop/ps_linklisteq3.0.1
prestashop/ps_linklisteq2.1.0
prestashop/ps_linklisteq2.1.4

Name	Operator	Version
prestashop/ps_linklist	eq	3.0.3
prestashop/ps_linklist	eq	1.2.0
prestashop/ps_linklist	eq	1.1.0
prestashop/ps_linklist	eq	2.1.2
prestashop/ps_linklist	eq	3.0.0
prestashop/ps_linklist	eq	2.1.6
prestashop/ps_linklist	eq	3.0.2
prestashop/ps_linklist	eq	3.0.1
prestashop/ps_linklist	eq	2.1.0
prestashop/ps_linklist	eq	2.1.4