prestashop/prestashop is vulnerable to remote code execution. The vulnerability exists in getLegacyLayout
function of LayoutExtension.php
due to improper escaping of smarty output for twig which allows an attacker to inject and execute arbitrary twig code.