My3Ker

**Name of the Vulnerable Software and Affected Versions** PrestaShop Product Comments versions 4.0.0 through 4.2.0 **Description** An attacker could inject malicious web code into the users' web browsers by creating a malicious link. The problem was introduced in version 4.0.0 and is fixed in 4.2.0. **Recommendations** For PrestaShop Product Comments versions 4.0.0 through 4.1.x, update to version 4.2.0 to resolve the issue. As a temporary workaround, consider restricting user input to prevent malicious link creation until a patch is applied.