CVE-2020-5286

In PrestaShop between versions 1.7.4.0 and 1.7.6.5, there is a reflected XSS when uploading a wrong file.

The problem is fixed in 1.7.6.5
Source: NIST
CVE-2020-5286