Description PrestaShop 1.7.2.4 has XSS via source-code editing on the "Pages > Edit page" screen. Remediation References CVE-2018-5681 Related Vulnerabilities Moodle Other Vulnerability (CVE-2004-2236) phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-0792) WordPress Plugin Mini Mail Dashboard Widget 'abspath' Parameter Remote File Include (1.36) WordPress Plugin Easy Digital Downloads-Simple eCommerce for Selling Digital Files Multiple Security Bypass Vulnerabilities (2.1.10) WordPress Plugin Woo Email Control Cross-Site Scripting (1.01) Severity Medium Classification CVE-2018-5681 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities