Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/14 8:44 p.m.6 views

CVE-2026-44212

PrestaShop is an open source e-commerce web application. Prior to 8.2.6 and 9.1.1, there is a stored Cross-Site Scripting XSS vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/14 8:44 p.m.9 views

EUVD-2026-30481

PrestaShop is an open source e-commerce web application. Prior to 8.2.6 and 9.1.1, there is a stored Cross-Site Scripting XSS vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References1
CVE
CVE
added 2026/05/14 8:44 p.m.39 views

CVE-2026-44212

CVE-2026-44212 concerns PrestaShop's back-office Customer Service view. A stored XSS exists where an unauthenticated attacker can submit the public Contact Us form with a malicious email; the payload is stored in the database and executes when a back-office employee opens the affected customer th...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2026/05/08 4:54 p.m.5 views

GHSA-W9F3-QC75-QGX9 PrestaShop has a stored XSS executable in customer service view

Impact This is a stored Cross-site Scripting XSS vulnerability in the PrestaShop back-office Customer Service view. An unauthenticated attacker can submit the public Contact Us form with a malicious email address. The payload is stored in the database and executed when a back-office employee open...

9.3CVSS5.8AI score0.00331EPSS
Exploits0References2
Rows per page
Query Builder