Lucene search
PRIOn knowledge basePRION:CVE-2023-39527HistoryAug 07, 2023 - 9:15 p.m.
Cross site scripting
2023-08-0721:15:00
PRIOn knowledge base
www.prio-n.com
6
prestashop
e-commerce
web application
cross-site scripting
iscleanhtml
version vulnerability
patch
0.0005 Low
EPSS
Percentile
17.1%
PrestaShop is an open source e-commerce web application. Versions prior to 1.7.8.10, 8.0.5, and 8.1.1 are vulnerable to cross-site scripting through the isCleanHTML method. Versions 1.7.8.10, 8.0.5, and 8.1.1 contain a patch. There are no known workarounds.
| CPE | Name | Operator | Version |
|---|---|---|---|
| prestashop | eq | 8.1.0 | |
| prestashop | lt | 1.7.8.10 | |
| prestashop | ge | 8.0.0 | |
| prestashop | lt | 8.0.5 |
Related
cve
cve
CVE-2023-39527
2023-08-07 21:15:10
github
github
PrestaShop XSS injection through Validate::isCleanHTML method
2023-08-09 14:37:16
osv
osv
PrestaShop XSS injection through Validate::isCleanHTML method
2023-08-09 14:37:16
BIT-prestashop-2023-39527
2024-03-06 11:03:34
CVE-2023-39527
2023-08-07 21:15:10
cvelist
cvelist
veracode
veracode
Cross-site Scripting (XSS)
2023-08-09 08:44:52
nvd
nvd
CVE-2023-39527
2023-08-07 21:15:10