CVE-2022-35933

Published September 2nd, 2022

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

This package is a PrestaShop module that allows users to post reviews and rate products. There is a vulnerability where the attacker could steal an administrator's cookie. The issue is fixed in version 5.0.2.

PrestaShop/productcomments

PrestaShop module that allows users to post reviews and rate products.

GitHub