CVE-2024-25841

In the module "So Flexibilite" (soflexibilite) from Common-Services for PrestaShop < 4.1.26, a guest (authenticated customer) can perform Cross Site Scripting (XSS) injection. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt