Description
Cross-site scripting (XSS) vulnerability in redirect.php in the Socolissimo module (modules/socolissimo/) in PrestaShop before 1.4.7.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to "parameter names and values."
Remediation
References
Related Vulnerabilities
PostgreSQL Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-1115)
Apache Tomcat Other Vulnerability (CVE-2001-0829)
WordPress Plugin Catch Duplicate Switcher Security Bypass (1.5.2)
MySQL CVE-2017-10311 Vulnerability (CVE-2017-10311)
WordPress Plugin Yasr-Yet Another Stars Rating SQL Injection (0.9.0)