From 2c8ca1a909e10b1c42e058a80bffea4967f321c1 Mon Sep 17 00:00:00 2001
From: B4N1 <banimontoya@gmail.com>
Date: Wed, 13 May 2026 07:56:10 -0500
Subject: [PATCH] Improve GHSA-w9f3-qc75-qgx9

---
 .../2026/05/GHSA-w9f3-qc75-qgx9/GHSA-w9f3-qc75-qgx9.json    | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/advisories/github-reviewed/2026/05/GHSA-w9f3-qc75-qgx9/GHSA-w9f3-qc75-qgx9.json b/advisories/github-reviewed/2026/05/GHSA-w9f3-qc75-qgx9/GHSA-w9f3-qc75-qgx9.json
index e120c1d9cb71f..fcebc368edc58 100644
--- a/advisories/github-reviewed/2026/05/GHSA-w9f3-qc75-qgx9/GHSA-w9f3-qc75-qgx9.json
+++ b/advisories/github-reviewed/2026/05/GHSA-w9f3-qc75-qgx9/GHSA-w9f3-qc75-qgx9.json
@@ -1,13 +1,13 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-w9f3-qc75-qgx9",
-  "modified": "2026-05-08T16:54:22Z",
+  "modified": "2026-05-08T16:54:23Z",
   "published": "2026-05-08T16:54:22Z",
   "aliases": [
     "CVE-2026-44212"
   ],
-  "summary": "PrestaShop has a stored XSS executable in customer service view",
-  "details": "### Impact\n\nThis is a **stored Cross-site Scripting (XSS)** vulnerability in the PrestaShop back-office Customer Service view.\n\nAn unauthenticated attacker can submit the public Contact Us form with a malicious email address. The payload is stored in the database and executed when a back-office employee opens the affected customer thread, enabling session hijacking and full back-office takeover.\n\n### Patches\n\nPatched in PrestaShop 8.2.6 and 9.1.1.\n\n### Workarounds\n\nNone.\n\n### Resources\n\n- Reported by Savio at Doyensec (`anthropic@doyensec.com`) in collaboration with Anthropic Research.",
+  "summary": "Credit Attribution Correction: Bani Montoya (B4N1) for original discovery",
+  "details": "### Impact\nThis is a stored Cross-site Scripting (XSS) vulnerability in the PrestaShop back-office Customer Service view.\n\nAn unauthenticated attacker can submit the public Contact Us form with a malicious email address. The payload is stored in the database and executed when a back-office employee opens the affected customer thread, enabling session hijacking and full back-office takeover.\n\n### Patches\nPatched in PrestaShop 8.2.6 and 9.1.1.\n\n### Workarounds\nNone.\n\n### Resources\n- Reported by Savio at Doyensec (anthropic@doyensec.com) in collaboration with Anthropic Research.\n- Independently reported by Bani Montoya (B4N1) on March 30, 2026.",
   "severity": [
     {
       "type": "CVSS_V3",