RSS   Vulnerabilities for 'Ps emailsubscription'   RSS

2021-03-31
 
CVE-2021-21418

CWE-79
 

 
ps_emailsubscription is a newsletter subscription module for the PrestaShop platform. An employee can inject javascript in the newsletter condition field that will then be executed on the front office The issue has been fixed in 2.6.1

 

 >>> Vendor: Prestashop 12 Products
Prestashop
EBAY
Ebay module
Faceted search module
Prestashop link
Prestashop linklist
Prestashop socialfollow
Correos express
Dashboard products
Contactform
Productcomments
Ps emailsubscription


Copyright 2024, cxsecurity.com

 

Back to Top