Vulnerabilities > Prestashop > Contactform > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-09-15 | CVE-2020-15178 | Cross-site Scripting vulnerability in Prestashop Contactform In PrestaShop contactform module (prestashop/contactform) before version 4.3.0, an attacker is able to inject JavaScript while using the contact form. | 9.3 |