← volver
CVE-2019-11876

CVE-2019-11876

EPSS 0.9%
In PrestaShop 1.7.5.2, the shop_country parameter in the install/index.php installation script/component is affected by Reflected XSS. Exploitation by a malicious actor requires the user to follow the initial stages of the setup (accepting terms and conditions) before executing the malicious link.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.logicallysecure.com/blog/xss-presta-xss-drupal/https://www.prestashop.com/forums/forum/2-prestashop-news-and-releases/