VDB
KO
HIGH 8.3

GHSA-xw2r-f8xv-c8xp

PrestaShop XSS injection through Validate::isCleanHTML method

Details

### Impact xss injection through `isCleanHTML` method

### Patches 1.7.8.10 8.0.5 8.1.1

### Found by Aleksey Solovev (Positive Technologies)

### Workarounds

### References

Are you affected?

Enter the version of the package you're using.

Affected packages

Packagist / prestashop/prestashop
Introduced in: 8.1.0 Fixed in: 8.1.1
Fix composer require prestashop/prestashop:^8.1.1
Packagist / prestashop/prestashop
Introduced in: 8.0.0 Fixed in: 8.0.5
Fix composer require prestashop/prestashop:^8.0.5
Packagist / prestashop/prestashop
Introduced in: 0 Fixed in: 1.7.8.10
Fix composer require prestashop/prestashop:^1.7.8.10

References