CVE-2015-1175

Publication date

2015-01-22 16:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in blocklayered-ajax.php in the blocklayered module in PrestaShop 1.6.0.9 and earlier allows remote attackers to inject arbitrary web script or HTML via the layered_price_slider parameter.