Lucene search
Veracode Vulnerability DatabaseVERACODE:32471HistoryOct 13, 2021 - 3:45 a.m.
Cross-Site Scripting (XSS)
2021-10-1303:45:03
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.001 Low
EPSS
Percentile
19.4%
prestashop/ps_linklist is vulnerable to cross-site scripting. The vulnerability exists because the custom URLs are not validated in ‘buildForm’ function in ‘CustomUrlType.php’ allowing a malicious attacker to inject arbitrary scripts.
| CPE | Name | Operator | Version |
|---|---|---|---|
| prestashop/ps_linklist | le | v3.0.4 | |
| prestashop/ps_linklist | le | v3.0.4 |
Related
cvelist
cvelist
CVE-2020-5273 Stored XSS with custom URLs in PrestaShop module ps_linklist
2020-04-16 21:15:17
github
github
Stored XSS with custom URLs in PrestaShop module ps_linklist
2021-10-12 16:01:36
nvd
nvd
CVE-2020-5273
2020-04-16 22:15:13
prion
prion
Cross site scripting
2020-04-16 22:15:00
osv
osv
CVE-2020-5273
2020-04-16 22:15:13
Stored XSS with custom URLs in PrestaShop module ps_linklist
2021-10-12 16:01:36
cve
cve
CVE-2020-5273
2020-04-16 22:15:13