CVE-2020-15161
Published
CVSS v3
5.4
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT
Description
In PrestaShop from version 1.6.0.4 and before version 1.7.6.8 an attacker is able to inject javascript while using the contact form. The problem is fixed in 1.7.6.8
PrestaShop is the universal open-source software platform to build your e-commerce solution.
GitHub