CVE-2012-6641 in PrestaShopinfo

Summary

by MITRE

Cross-site scripting (XSS) vulnerability in redirect.php in the Socolissimo module (modules/socolissimo/) in PrestaShop before 1.4.7.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to "parameter names and values."

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Analysis

by VulDB Data Team • 05/09/2026

The CVE-2012-6641 vulnerability represents a critical cross-site scripting flaw within the Socolissimo module of PrestaShop, a widely used e-commerce platform. This vulnerability specifically affects versions prior to 1.4.7.2 and resides in the redirect.php file located within the modules/socolissimo/ directory. The flaw enables remote attackers to execute malicious scripts in the context of affected websites, potentially compromising user sessions and data integrity. The vulnerability manifests through improper handling of parameter names and values during redirection processes, creating an attack surface where malicious input can be injected and executed without proper sanitization or validation.

The technical exploitation of this vulnerability occurs when the redirect.php script fails to adequately sanitize user-supplied input parameters before incorporating them into redirection URLs or HTML output. Attackers can craft malicious requests containing specially crafted parameter names and values that, when processed by the vulnerable module, result in the injection of executable JavaScript code or malicious HTML content. This occurs because the application does not implement proper input validation or output encoding mechanisms to prevent the execution of unauthorized code. The vulnerability is classified as a classic XSS flaw under CWE-79, which specifically addresses improper neutralization of input during web page generation, and represents a variant of reflected XSS attacks where the malicious payload is reflected back to users through the application's response.

The operational impact of this vulnerability extends beyond simple script injection, as it can lead to session hijacking, credential theft, and unauthorized administrative access to affected PrestaShop installations. When users navigate to maliciously crafted URLs containing the XSS payload, their browsers execute the injected scripts in the context of the vulnerable website, potentially allowing attackers to steal cookies, modify page content, or redirect users to malicious sites. The attack vector is particularly dangerous in e-commerce environments where users trust the website and may enter sensitive information. This vulnerability can be leveraged to compromise customer data, manipulate transactions, and potentially gain persistent access to the affected systems, making it a significant threat to online business operations and customer trust.

Mitigation strategies for CVE-2012-6641 should focus on immediate patching of affected PrestaShop installations to version 1.4.7.2 or later, which contains the necessary security fixes. Organizations should also implement comprehensive input validation and output encoding mechanisms throughout their web applications, particularly in modules that handle user input or perform redirection operations. The implementation of Content Security Policy headers can provide additional protection against XSS attacks by restricting the sources from which scripts can be loaded and executed. Security monitoring should include detection of suspicious parameter patterns and unusual traffic patterns that may indicate exploitation attempts. Organizations should also conduct regular security assessments and vulnerability scans to identify similar issues in other modules or components of their e-commerce platforms, following ATT&CK framework principles for identifying and mitigating web application vulnerabilities. The remediation process should include thorough testing to ensure that the patch does not introduce compatibility issues with existing functionality while maintaining the security improvements.

Sources

Do you know our Splunk app?

Download it now for free!