CVE-2013-4791

PrestaShop before 1.4.11 allows Logistician, translators and other low level profiles/accounts to inject a persistent XSS vector on TinyMCE.

Date published : 2020-02-13

http://davidsopaslabs.blogspot.com/2013/07/prestashop-persistent-xss-and-csrf.html