High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-06-30	CVE-2018-20848	Cross-site Scripting vulnerability in Peel Shopping 9.0.0 Advisto PEEL SHOPPING 9.0.0 has CSRF via en/achat/caddie_ajout.php and en/achat/caddie_affichage.php, as demonstrated by an XSS payload in the couleurId[0] parameter to the latter. network low complexity peel CWE-79	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.