CVE-2025-1230

Stored Cross-Site Scripting (XSS) vulnerability in Prestashop 8.1.7, due to the lack of proper validation of user input through /<admin_directory>/index.php, affecting the link parameter. This vulnerability could allow a remote user to send a specially crafted query to an authenticated user and steal their cookie session details.