Login Sign Up

CVE-2024-34716

9.6 CRITICAL
Cross-Site Scripting

📋 TL;DR

This is a stored cross-site scripting (XSS) vulnerability in PrestaShop that allows attackers to upload malicious files through the contact form. When an administrator opens the infected attachment in the back office, the attacker can hijack the admin session and perform any actions with administrator privileges. Only PrestaShop installations with the customer-thread feature flag enabled are affected.

💻 Affected Systems

Products:
  • PrestaShop
Versions: 8.1.0 to 8.1.5
Operating Systems: All
Default Config Vulnerable: ✅ No
Notes: Only vulnerable when customer-thread feature flag is enabled. Disabled by default in most installations.

📦 What is this software?

Prestashop by Prestashop

View all CVEs affecting Prestashop →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of the e-commerce platform including theft of customer data, financial information, and full administrative control over the store.

🟠

Likely Case

Attacker gains administrative access to modify products, steal customer data, or install backdoors for persistent access.

🟢

If Mitigated

If proper file upload restrictions and input validation are in place, the attack would be blocked before reaching administrators.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploitation requires social engineering to trick administrators into opening malicious attachments.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 8.1.6

Vendor Advisory: https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-45vm-3j38-7p78

Restart Required: No

Instructions:

1. Backup your PrestaShop installation and database. 2. Download PrestaShop 8.1.6 from the official repository. 3. Replace affected files with patched versions. 4. Clear cache and verify functionality.

🔧 Temporary Workarounds

Disable customer-thread feature flag

all

Disables the vulnerable feature entirely, preventing exploitation

Navigate to PrestaShop back office > Advanced Parameters > Feature Flags > Disable 'customer-thread'

🧯 If You Can't Patch

  • Implement strict file upload restrictions in web server configuration
  • Deploy WAF rules to block malicious file uploads and XSS payloads

🔍 How to Verify

Check if Vulnerable:

Check if PrestaShop version is between 8.1.0-8.1.5 AND customer-thread feature flag is enabled

Check Version:

Check PrestaShop version in back office dashboard or examine /config/defines.inc.php

Verify Fix Applied:

Verify PrestaShop version is 8.1.6 or higher, or customer-thread feature flag is disabled

📡 Detection & Monitoring

Log Indicators:

  • Unusual file uploads through contact form
  • Administrator sessions with abnormal activity patterns

Network Indicators:

  • Malicious file uploads containing script tags or JavaScript payloads

SIEM Query:

source="prestashop" AND (event="file_upload" AND file_extension IN ("html", "htm", "svg") OR event="admin_login" FROM unusual_location)

📊 Metadata

CVE ID: CVE-2024-34716
CVSS v3 Score: 9.6 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
CWE: CWE-79
Published: May 14, 2024
Last Updated: January 21, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-34716, you might also want to check these:

CVE-2021-39199 10.0

CVE-2021-39199 is a critical cross-site scripting (XSS) vulnerability in the remark-html Node.js lib...

Same vulnerability type (CWE-79)
CVE-2021-32671 10.0

This vulnerability in Flarum forum software allows attackers to inject malicious HTML/JavaScript int...

Same vulnerability type (CWE-79)
CVE-2021-32798 10.0

CVE-2021-32798 is a critical vulnerability in Jupyter Notebook that allows malicious notebook files ...

Same vulnerability type (CWE-79)