Lucene search
Veracode Vulnerability DatabaseVERACODE:27918HistoryNov 18, 2020 - 5:30 a.m.
Cross-site Scripting (XSS)
2020-11-1805:30:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
29.5%
prestashop/productcomments is vulnerable to cross-site scripting (XSS). An attacker is able to inject malicious scripts into the users’ web browsers using ajax requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| prestashop/productcomments | le | v4.1.0 |
Related
osv
osv
CVE-2020-26225
2020-11-16 22:15:12
Reflected XSS with parameters in PostComment
2020-11-16 21:23:29
prion
prion
Design/Logic Flaw
2020-11-16 22:15:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-11-17 05:16:58
github
github
Reflected XSS with parameters in PostComment
2020-11-16 21:23:29
nvd
nvd
CVE-2020-26225
2020-11-16 22:15:12
cve
cve
CVE-2020-26225
2020-11-16 22:15:12
cvelist
cvelist
CVE-2020-26225 Reflected XSS in PrestaShop Product Comments
2020-11-16 21:35:13