CVE-2025-24027 | ps_contactinfo Module up to 3.3.2 on PrestaShop cross site scripting (GHSA-35pq-7pv2-2rfw)

Inserito da Angelo Barbosa | Gen 22, 2025 | CVE

A vulnerability classified as problematic has been found in ps_contactinfo Module up to 3.3.2 on PrestaShop. Affected is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-24027. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-24027 | ps_contactinfo Module up to 3.3.2 on PrestaShop cross site scripting (GHSA-35pq-7pv2-2rfw)

Post correlati

CVE-2025-21635 | Linux Kernel up to 6.12.9/6.13-rc6 null pointer dereference

CVE-2023-49920 | Apache Airflow up to 2.7.3 GET Request cross-site request forgery

CVE-2024-12977 | PHPGurukul Complaint Management System 1.0 /admin/state.php state sql injection

CVE-2024-11748 | Taeggie Feed Plugin up to 0.1.9 on WordPress cross site scripting