prestashop/productcomments is vulnerable to cross-site scripting. The vulnerability exists due to a lack of sanitization of input allowing an attacker to inject maliciously crafted script to obtain an administrator cookie.
CPE | Name | Operator | Version |
---|---|---|---|
prestashop/productcomments | eq | v5.0.1 | |
prestashop/productcomments | eq | v5.0.1 |