Jomar

**Name of the Vulnerable Software and Affected Versions** PrestaShop versions 1.5.0.0 through 1.7.6.5 **Description** The issue concerns information exposure in the upload directory. A possible workaround is to add an empty index.php file in the upload directory. The problem is fixed in version 1.7.6.6. **Recommendations** For PrestaShop versions 1.5.0.0 through 1.7.6.5, update to version 1.7.6.6 to resolve the issue. As a temporary workaround, consider adding an empty index.php file in the upload directory until the update to version 1.7.6.6 is applied.