Tuesday, November 17, 2020
CVE-2020-26225
nist.gov
In: nist.gov
In PrestaShop Product Comments before version 4.2.0, an attacker could inject malicious web code into the users' web browsers by creating a malicious link. The problem was introduced in version 4.0.0 and is fixed in 4.2.0 CVE-2020-26225