An authenticated user with privileges to the Admin **Products** > **Catalog** configuration section can use a Stored Cross-Site Scripting (XSS) vulnerability to embed malicious code.
An authenticated user with privileges to the Admin **Products** > **Catalog** configuration section can use a Stored Cross-Site Scripting (XSS) vulnerability to embed malicious code.