Highjoleliev

**Name of the Vulnerable Software and Affected Versions** PrestaShop versions prior to 8.2.5 PrestaShop versions prior to 9.1.0 **Description** PrestaShop is susceptible to stored Cross-Site Scripting (stored XSS) issues within the back-office (BO). An attacker capable of injecting data into the database, potentially through limited back-office access or a pre-existing flaw, can exploit unprotected variables in back-office templates. **Recommendations** Update to PrestaShop version 8.2.5 or later. Update to PrestaShop version 9.1.0 or later.