CVE-2022-35933
PrestaShop Product Comments module (for PrestaShop) is affected by a cross-site scripting vulnerability prior to 5.0.2 that can allow an attacker to steal an administrator’s cookie. The root cause is insufficient filtering/escaping of user-supplied data, enabling cookie theft via crafted input. R...