Prestashop is an open source e-commerce solution from Prestashop, Inc. Prestashop is vulnerable to SQL injection, which results from the application’s lack of validation of externally entered SQL statements. An authenticated attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.