4 matches found
CVE-2025-1230
Stored Cross-Site Scripting XSS vulnerability in Prestashop 8.1.7, due to the lack of proper validation of user input through ‘//index.php’, affecting the ‘link’ parameter. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and steal their cook...
CVE-2025-1230
Stored Cross-Site Scripting XSS vulnerability in Prestashop 8.1.7, due to the lack of proper validation of user input through ‘//index.php’, affecting the ‘link’ parameter. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and steal their cook...
CVE-2025-1230 Cross-Site Scripting (XSS) vulnerability in Prestashop
Stored Cross-Site Scripting XSS vulnerability in Prestashop 8.1.7, due to the lack of proper validation of user input through ‘//index.php’, affecting the ‘link’ parameter. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and steal their cook...
PT-2025-6866 · Unknown · Prestashop
Name of the Vulnerable Software and Affected Versions: Prestashop version 8.1.7 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability due to the lack of proper validation of user input. This affects the link parameter through the /index.php endpoint, specifically in...