Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 11:32 a.m.16 views

CVE-2025-1230

Stored Cross-Site Scripting XSS vulnerability in Prestashop 8.1.7, due to the lack of proper validation of user input through ‘//index.php’, affecting the ‘link’ parameter. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and steal their cook...

4.8CVSS5.5AI score0.00256EPSS
Exploits0References3
NVD
NVD
added 2025/02/12 11:15 a.m.32 views

CVE-2025-1230

Stored Cross-Site Scripting XSS vulnerability in Prestashop 8.1.7, due to the lack of proper validation of user input through ‘//index.php’, affecting the ‘link’ parameter. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and steal their cook...

4.8CVSS0.00256EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/12 10:38 a.m.8 views

CVE-2025-1230 Cross-Site Scripting (XSS) vulnerability in Prestashop

Stored Cross-Site Scripting XSS vulnerability in Prestashop 8.1.7, due to the lack of proper validation of user input through ‘//index.php’, affecting the ‘link’ parameter. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and steal their cook...

4.8CVSS4.8AI score0.00256EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/12 12:0 a.m.7 views

PT-2025-6866 · Unknown · Prestashop

Name of the Vulnerable Software and Affected Versions: Prestashop version 8.1.7 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability due to the lack of proper validation of user input. This affects the link parameter through the /index.php endpoint, specifically in...

4.8CVSS5.8AI score0.00256EPSS
Exploits0References6
Rows per page
Query Builder