GHSA-mqq7-wxx5-mp8h: ps_checkout allows unauthorized method invocation through unvalidated parameter

April 30, 2026

Unvalidated parameter can lead to some unauthorized method invocation with very little possibilities.

References

github.com/PrestaShopCorp/ps_checkout
github.com/PrestaShopCorp/ps_checkout/releases/tag/v5.3.0
github.com/PrestaShopCorp/ps_checkout/security/advisories/GHSA-mqq7-wxx5-mp8h
github.com/advisories/GHSA-mqq7-wxx5-mp8h

Code Behaviors & Features

Detect and mitigate GHSA-mqq7-wxx5-mp8h with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →