CVE-2026-33674

Summary

PrestaShop is an open source e-commerce web application. Versions prior to 8.2.5 and 9.1.0 improperly use the validation framework. Versions 8.2.5 and 9.1.0 contain a fix. No known workarounds are available.

Affected Software

VendorProductVersion RangeStatus
PrestaShopPrestaShop< 8.2.5affected
PrestaShopPrestaShop>= 9.0.0-alpha.1, < 9.1.0affected

Weaknesses

  • CWE-1173: CWE-1173: Improper Use of Validation Framework

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References