Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Prestashop before 1.5 allow remote attackers to inject arbitrary web script or HTML via the 1 address or 2 relativbasedir parameter to modules/mondialrelay/googlemap.php; the 3 relativbasedir, 4 Pays, 5 Ville, 6 CP, 7 Poids, 8 Action, or 9 num...