EPSS
Percentile
29.3%
prestashop/productcomments is vulnerable to cross-site scripting (XSS). An attacker is able to inject malicious scripts into the users’ web browsers using ajax requests.
github.com/advisories/GHSA-58w4-w77w-qv3w
github.com/PrestaShop/productcomments/commit/c56e3e9495c4a0a9c1e7dc43e1bb0fcad2796dbf
github.com/PrestaShop/productcomments/pull/81
github.com/PrestaShop/productcomments/security/advisories/GHSA-58w4-w77w-qv3w