Description PrestaShop 1.7.2.4 has XSS via source-code editing on the "Pages > Edit page" screen. Remediation References CVE-2018-5681 Related Vulnerabilities Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4938) WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-2745) MySQL CVE-2016-9840 Vulnerability (CVE-2016-9840) WordPress Plugin PhastPress Open Redirect (1.110) MySQL CVE-2021-35623 Vulnerability (CVE-2021-35623) Severity Medium Classification CVE-2018-5681 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities