PrestaShop Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2023-39527 - Vulnerability Database

PrestaShop Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2023-39527

Medium
Reference: CVE-2023-39527
Title: PrestaShop Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

PrestaShop is an open source e-commerce web application. Versions prior to 1.7.8.10 8.0.5 and 8.1.1 are vulnerable to cross-site scripting through the isCleanHTML method. Versions 1.7.8.10 8.0.5 and 8.1.1 contain a patch. There are no known workarounds.