2 matches found
CVE-2020-5294 Reflected XSS with social networks fields
PrestaShop module psfacetedsearch versions before 2.1.0 has a reflected XSS with social networks fields The problem is fixed in 2.1.0...
CVE-2020-5294
CVE-2020-5294 concerns the PrestaShop module ps_facetedsearch, where versions before 2.1.0 are vulnerable to a reflected Cross-Site Scripting (XSS) issue via the social networks fields. The core problem is an input validation weakness that allows injection and execution of arbitrary JavaScript in...