PrestaShop Zero-Day vulnerability exfiltrates Customer Payment Data from online stores
Malicious stars are making use of a previously unknown protection problem outdoors resource PrestaShop shopping system to infuse malicious skimmer code developed to swipe delicate information. This happened last time in early March, 2022.
"Attackers have found a way to use a security vulnerability to carry out arbitrary code execution in servers running PrestaShop websites." - noted the company advisory published on July 22.
PrestaShop has been marketed as the leading open-source shopping service in Europe and also Latin America, used by almost 300,000 online vendors worldwide.