PT-2024-40486 · Thelia · Thelia
Published
2024-05-30
·
Updated
2024-05-30
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Thelia versions 2.1.0 through 2.1.1
Description
The BackOffice of Thelia has a cross-site scripting issue in the
error.html template. This issue is resolved in version 2.1.2.Recommendations
For Thelia versions 2.1.0 and 2.1.1, update to version 2.1.2 to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Thelia