Reading Time: < 1 minutes

Three very important vulnerabilities have been detected in Prestashop: two of the SQL injection type, one of critical severity and the other of high severity, and another high severity XSS injection vulnerability, which could allow any user with administrator permissions to write, update or drop SQL databases regardless of their permissions.

You can see the statement here.

Detail:

The critical severity vulnerability is SQL filtering and could allow a user to write, update, and delete to the database, even without having specific administrator permissions.

Of the high severity vulnerabilities, one affects arbitrary file reading, which makes it possible for a user with SQL manager access to arbitrarily read any file in the operating system with a SELECT function. While the other high severity vulnerability consists of a possible XSS injection, which could facilitate the hijacking of HTML elements without the need for user interaction.

Solution:

Prestashop has released a patch and recommends updating to versions 8.0.4 and 1.7.8.9.

https://build.prestashop-project.org/news/2023/prestashop-8-0-4-maintenance-release/
https://build.prestashop-project.org/news/2023/prestashop-1-7-8-9-maintenance-release/

The only current way to apply the patch is to update the version of Prestashop to the indicated ones.

If you have a Prestashop 1.7.X you must update to 1.7.8.9

If you have a Prestashop 8.X you must update to 8.0.4

Reading Time: < 1 minutesDo you have an E-Commerce with¬†PrestaShop¬†and want to configure the Facebook pixel quickly and easily?¬†Then don’t miss this useful guide to integrate Facebook on PrestaShop.

The first thing to do is to log into your PrestaShop panel. Next we will have to distinguish two cases:

  • Newly created PrestaShop store
  • Existing PrestaShop store

prestashop-facebook

Newly created PrestaShop store

If you have just created your E-Commerce site with PrestaShop, know that Facebook is already integrated within it. You can then access it, by going through the forms management.

  • Enter the PrestShop backend
  • Select the entry¬†Forms
  • Select¬†Module Manager or Module Manager
  • Select¬†PrestaShop¬†Facebook
  • Click on¬†Configure

Existing PrestaShop store

If you already have a PrestaShop store and the Facebook module is not installed, the process is very similar to before, but with a small difference.

In particular, you will need to:

  • Install PrestaShop Facebook from the Module Catalog tab or in the PrestaShop marketplace
  • Select the entry¬†Forms
  • Select¬†Module Manager or Module Manager
  • Select¬†PrestaShop¬†Facebook
  • Click on¬†Configure

Alternatively you can also do this second procedure:

  • Open¬†PrestaShop Facebook¬†and download the module
  • Access the Module Catalog and download the module in the backend
  • Configure the module in the Module Manager tab
  • Once the PrestaShop Facebook module is open, select “start” to proceed.

Reading Time: 4 minutesThis guide gives you full control over the process. This has been applied by PrestaShop for several major versions and thus can be applied on very old stores.

Download release
The first step is to download the latest version at https://www.prestashop.com/ .

The download can also be done from the command line:

wget -O prestashop-upgrade.zip https://www.prestashop.com/download/old/prestashop_1.7.7.5.zip

Once you have the folders like classes /, modules /, themes / , etc. you can go to the next step.

Simple Data Cleanup

Avoid overwriting production resources (images, conf…) with default data. These folders can be removed from the new version:

  • img /
  • override /

All other files in the new version will overwrite the existing files. Any changes made to the original source code will be lost.

Also, rename the ‚Äúadmin‚ÄĚ folder to match your store’s admin folder name.¬†This will prevent unwanted duplication of the administration content.

Activation of maintenance mode

As it may cause unexpected behavior for you and your customers during the upgrade, we strongly recommend that you turn on maintenance mode during the upgrade.

You can do this in your admin panel:

  • On PrestaShop 1.7, in Store parameters> General> Maintenance tab
  • On PrestaShop 1.6, in Shop parameters> Maintenance

Adding your IP address will allow you to access your store while it is in maintenance mode. This way, you can make sure everything is working properly before allowing your customers to access it again.

Copy the files

In this step, we ‚Äúupdate‚ÄĚ the PrestaShop files by copying the content of the new version to the existing store.

Disable the cache

You may have activated a caching system (e.g. memcache) on your store.¬†If so, be sure to disable it in ‚Äú¬†Advanced Settings‚ÄĚ> ‚ÄúPerformance‚Ä̬†.¬†You can enable it again once the update process is finished.

Note on the ‚ÄúVendor‚ÄĚ folder: the previous updates of PrestaShop 1.7 showed that conflicts can occur when merging the new supplier / folder with the old one.¬†To avoid this problem, it is recommended to delete this folder in the existing store before copying the new one.

On Windows, copy the new contents of the folder and paste it into your store folder.¬†You will receive warnings that the files already exist in the destination folder.¬†Choose “overwrite” to continue.

On Linux, the copy can be done in your terminal:

cp -R <path_to_the_new_release>/* <path_to_the_current_shop>/

For example:

cp -R ~/Downloads/prestashop/* /var/www/html/

Database update

Once the files have been copied, your store database is ready to be updated.

All changes to be applied have been defined in the installation folder, their execution can be performed with a specific PHP script.

When ready, run the install / upgrade / upgrade.php file .

This can be done with a browser, by reaching the address http: // <shop_domain> /install/upgrade/upgrade.php or from the command line of your server:

php install/upgrade/upgrade.php

In both cases an XML log will be displayed. The result can be found in the result of the attribute of the first <action> tag:

  • ok¬†if updates have been found and performed
  • error¬†if something went wrong
  • info¬†for subsequent actions, viewing process details

Execution log

When the update script has detected some updates to apply, the executed SQL queries will be listed along with their result.

<?xml version="1.0" encoding="UTF-8"?><action result="ok" id="">
<action result="info" id="1.7.0.5"><![CDATA[[OK] PHP 1.7.0.5 : /* PHP:ps_update_tabs(); */]]></action>
<action result="info" id="1.7.0.5"><![CDATA[[OK] SQL 1.7.0.5 : ALTER TABLE `ps_currency` MODIFY `name` varchar(64) NOT NULL]]></action>
<action result="info" id="1.7.1.0"><![CDATA[[OK] SQL 1.7.1.0 : SET SESSION sql_mode = '']]></action>
<action result="info" id="1.7.1.0"><![CDATA[[OK] SQL 1.7.1.0 : SET NAMES 'utf8']]></action>
[...]

You can double check that each action is marked “OK”.¬†If not, further details will be shown after the request, which can help you resolve the issue and re-run the request manually on your database.¬†In some cases, you may need to restore the database backup and start over.

Error codes

You can also see an error code. Each code is related to a message described here:

  • Error n.¬†27: The store is running a newer version than the content provided by the installation folder.
  • Error n.¬†28: The store is already at the version you are trying to upgrade to.
  • Error # 29: The current version could not be found.¬†Check the database parameter file and database connection.
  • Error n.¬†31: unable to find upgrade directory in installation path, install / upgrade / sql folder exists and is not empty?
  • Error # 32: No updates need to be applied.
  • Error # 33: Error loading an SQL update file.¬†Check the permissions of the install / upgrade / sql folder.
  • Error # 40: The version provided in the install / install_version.php file is not valid.
  • Error # 43: Error updating database schema using doctrine.
  • Error # 44: Error updating translations.
  • Error # 45: error while enabling the theme.

Cleaning

Before we go any further, we will have to do some cleaning.

The installation folder, used to perform database updates, is no longer needed and can be safely deleted.
When you open your store (in the front or back office) on your browser, you may experience some visual problems. This may be because your old resources are still served by a cache. Reload them by forcibly refreshing the page (press ctrl + R on Windows / Linux or cmd + R on Mac OS) or by clearing your browser cache.

Update the modules

Your module files were updated while the file was copied, however many of them may require additional database changes. Check the module page in your Back Office to see if updates are pending.

Go to your admin panel and log in. You will notice that the version displayed has changed on the login page. Then in the menu, click on the form page to reach your catalog.

On PrestaShop 1.6, this page is located in ‚ÄúModule and services‚ÄĚ.¬†Click “Update All” at the top of the page to perform all available updates:

prestashop-aggiornamento

On PrestaShop 1.7, the same functionality can be found on the Enhance >> Modules page, in the “Notifications” tab:

prestashop-aggiornamento-2

1-click update module

If the manual process seems too tedious, there are other solutions to complete an update.

PrestaShop provides free 1-click upgrade module on the marketplace and admin panel of your store. It automatically carries out the previously mentioned process and is available for almost all versions of PrestaShop.

You can read more about it here.

 

 

Reading Time: 3 minutesPrestashop¬†has quite strict security features and one of these is certainly the duration of the session timeout, which is rather short.¬†This ploy is to reduce your application’s exposure to session-based attacks, such as session cookie theft.

However, this can be quite annoying for anyone who is working with the platform. Store admins may be logged out of the admin interface if they are idle for some time. This can be very frustrating.

Today then I’ll show you why it happens and how to fix this error.

Prestashop-login

Prestashop Admin Login Problem – Where do you see this error?

This problem usually occurs when one of these conditions occurs:

  • Prestashop admin panel logs out the admin while updating the product settings.
  • The Prestashop store owner cannot log in, no matter how many times the browser cache is cleared.
  • Prestashop admin panel disconnects the owner after a few minutes of inactivity.

Prestashop admin login problem: 3 reasons

Let’s see what are the 3 main reasons why the Prestashop admin login problem occurs.

  • Maximum duration of inactivity set – ‚ÄúAdmin Controller‚ÄĚ manages the back office functions in Prestashop.¬†The default cookie inactivity period is set to 15 minutes in this file.¬†You will be removed from the admin panel after 15 minutes of inactivity.
  • Use of the dynamic IP address: when you are in the Prestashop administration panel, this system protects the session by tagging your login session with your IP address (via authentication cookie).¬†Constantly check this IP address.¬†If your IP address changes, it will invalidate the cookie and ask you to log in again.
  • Incorrect Values ‚Äč‚Äčfor ‚ÄúPS_SHOP_DOMAIN‚ÄĚ and ‚ÄúPS_SHOP_DOMAIN_SSL‚ÄĚ – Wrong domain name provided for PS_SHOP_DOMAIN and PS_SHOP_DOMAIN_SSL in the ps_configuration table.

Prestashop admin login problem: how to fix this error?

To solve this problem, we mainly use 5 different ways, based on the exact problem the store owner is facing.

But before you get into the details and make any changes to the store, make sure you have the database and website files backed up.

1. Clear your browser cache and cookies

To check this, try to log in from another browser or activate the “Incognito mode”.

2. Clear the Prestashop cache

The cache files are located in these locations.

Go to these folders and delete all the files in them.

  • / tools / smarty / cache
  • OR / tools / smarty_v2 / cache
  • / tools / smarty / compile
  • OR / tools / smarty_v2 / compil

3. Correct the domain name saved in the database

Provide the correct domain name for PS_SHOP_DOMAIN and PS_SHOP_DOMAIN_SSL in the ps_configuration table.

You should only provide the domain name.¬†For example: your shop URL is http://test.com/store/, you should provide values ‚Äč‚Äčlike:

PS_SHOP_DOMAIN = test.com
PS_SHOP_DOMAIN_SSL = test.com

The installation directory should be indicated in the “ /config/setting.inc.php “ file.

4. Disable IP address checking

Remove the check of the user’s IP address performed by Prestashop.

You can disable it in the ‚Äú¬†classes / cookie.php¬†‚ÄĚ file inside the ‚Äú¬†isLoggedBack ()¬†‚Äú function.

Here, remove or comment on the following condition.

! Configuration :: get (‘PS_COOKIE_CHECKIP’))

5. Increase the period of inactivity of cookies

The inactivity period is set to 15 minutes by default.

You can increase this value in the “ classes / controller / AdminController.php “ file.

Look for the following code in the file:

if (time $ this-> Context> cookie-> last_activity + 900 <())

Here the inactivity period is set to 900s (15 minutes). You can replace this value in seconds.

Reading Time: 4 minutesPrestaShop is an e-commerce platform developed in France in 2007, free to download and open source. This means that every E-Commerce owner is able to modify the software code to adapt their store to their individual needs.

This platform is perfect for any type of business, be it small, medium or large. You can easily customize your site, manage and choose the payment method you prefer and generally set up your site as you want.

But, despite being free, how much does it cost to create an E-Commerce with PrestaShop?¬†Are we sure it’s completely free?

In this article we will look at just that.

How much does development cost for PrestaShop?

If you want to start your business in the right direction and create a functional E-Commerce, you will need a professional team of developers, with knowledge and experience. In addition, it is essential to hire people who are responsible for the visual aspect of the store, as this is certainly a fundamental aspect to improve sales.

The hourly rate of qualified professionals may vary depending on the country.

So let’s see an overview of the cost of development services for PrestaShop, as far as professionals are concerned.

  • In the United States, we can observe the highest price – $ 120-125.
  • In the UK, developments earn around $ 65-70.
  • In European countries, prices vary by region – around $ 60-80.
  • If we talk about lower development rates, we can find them in South America (around $ 15-20) and in Asia (around $ 35).

The hourly rate of the agencies, on the other hand, is higher and this is because they have a more professional approach and are more reliable.

  • Prices in US agencies are around $ 20-50.
  • In the UK, prices range from $ 20 to 130 depending on the customer’s needs.
  • In South America, prices are significantly lower: $ 5-20.
  • In Asia, customers should pay around $ 10-20.

These prices, of course, can vary depending on the scale and difficulty of the client’s projects.¬†The hourly rate of the agencies will be different in each region.¬†So, in case you need a highly skilled job, choose a reputable development company.

How much do PrestaShop themes and extensions cost?

A large variety of modules and templates can be found in the PrestaShop marketplace . You will see that the navigation is quite simple and thanks to a menu and the sidebar of the filter, you can immediately find what you are looking for.

PrestaShop add-ons

The official PrestaShop marketplace –¬†PrestaShop Addons¬†– offers more than 5,000 modules and themes that help you customize your online store.

This way, you can increase traffic, improve conversion rates and build customer loyalty. In fact, there are many possibilities that PrestaShop with its modules can offer you.

The modules are divided into 10 categories. Examples of categories are:

  • Product page
  • Design and navigation
  • Promotions and marketing
  • Traffic and markets
  • Payment
  • Shipping and logistics
  • Administration
  • Clients
  • Facebook and social networks
  • Specialized platforms

PrestaShop template

The design of your store is a fundamental aspect for your customers, because it gives professionalism to your store.

There are more than 1300 free and paid PrestaShop themes. To choose the one that best suits your business, you can use the useful filters by category, color, rating, extended functionality, style and version of the platform.

The main categories for the themes are:

  • Premium models
  • Fashion and shoes
  • Electronics and computers
  • Food and restaurant
  • Drinks and tobacco
  • House & Garden
  • Jewelery and accessories
  • Health & Beauty

Prices vary and the cheapest cost between 45-60 ‚ā¨.¬†The more complex ones, on the other hand, can even reach up to ‚ā¨ 300.

How much does a hosting for PrestaShop cost?

Clearly if you decide to use PrestaShop, you will also have to choose a hosting where to stay your site. The prices for hosting vary depending on the characteristics of the latter.

Prices can start from a minimum of ‚ā¨ 25 and up, it all depends on the type of plan.

If you want information about our hosting plans for PrestaShop, contact us!

How much does PrestaShop support cost?

PrestaShop offers several support plans for open source at additional costs. Plus, you have access to useful resources like PrestaShop forum, community, documentation, FAQ, YouTube tutorials.

We describe the main assistance plans and discover the main features:

Conclusion

So, is PrestaShop actually the right solution for you?¬†Does it have more advantages or disadvantages?¬†Can it make your business profitable?¬†Let’s talk about the pros and cons.

Advantages of PrestaShop

  • A free e-commerce solution.
  • You can get support from the open source community.
  • A large number of features (over 600) such as item tracking and out of stock alerts
  • Lots of different themes and modules to expand your store and make it unique.
  • Awesome features
  • The ability to manage your online store internationally
  • PrestaShop is translated into over 25 languages
  • Advanced SEO features – management of meta titles, descriptions and URLs
  • Large selection of payment options: PayPal Standard and Pro, Skrill, Stripe, WorldPay, offline processing, etc.

Disadvantages of PrestaShop

  • There are additional costs beyond the software itself
  • Several add-ons can be very expensive, and some of them can be incompatible
  • The developer’s knowledge and experience may be required and it will cost a lot

All in all, PrestaShop is a good solution with a lot of advantages if you need to create an online store with a lot of customization options. But there are some drawbacks, such as the additional costs. if you are looking for an all-in-one solution, PrestaShop is not for you.

Reading Time: 4 minutesIf you are also wondering “What is¬†PrestaShop¬†and why you should use it for your E-Commerce”, you have come to the right place!

When deciding to embark on a path related to online sales, the main question is: which platform do I use?

In this article we will go to the discovery of Prestashop, seeing in detail what it is and why it is chosen by many to sell online.

The creation of an online store can in fact be scary at first, especially when you are not very familiar with the available platforms and their level of functionality.

But what you need to understand is that all eCommerce platforms have their own set of features, ease of use, and level of flexibility. You just need to choose the one that comes closest to your needs. The choice, however, must be aware, since it is not possible to switch so easily to switch from one E-Commerce platform to another.

This is the reason for these guides of ours. We will try to help you in the conscious choice of the right platform. In the specific case today we will talk about PrestaShop, so that you can understand if it is good for your needs or not.

What is PrestaShop?

PrestaShop¬†is a¬†freely accessible¬†open source E-Commerce platform .¬†It boasts many ready-to-use features, which still make it really appealing to all E-merchants.¬†It works on PHP and from a merchant’s point of view it’s pretty straightforward and you can build complete E-Commerce websites along with great features.

There are many stores created with this platform and just as many are the realities that work there. In fact, thanks to its incredibly intuitive interface, it has certainly conquered a good slice of the market. Not to mention that the offer linked to modules and extensions, to expand functionality, is certainly very wide.

Some amazing features of PrestaShop such as advanced backup schemes, high reliability and easy accessibility allow users to have an optimal capacity site.

PrestaShop features

As I told you, PrestaShop has over three hundred built-in features that allow you to manage payment methods, shipping, product listing, suppliers and buyers.

You can also customize your site, thanks to the numerous templates available.

1. Ease of use

The only slightly more technical part of PrestaShop is the installation, which we will see in one of our next guides anyway. Otherwise, the use of this platform is rather easy . It is indeed very intuitive.

For the moment you can see a demo of the platform, to be able to understand the back-end and the front-end and understand a bit how it is structured. PrestaShop is able to provide you with a perfectly responsive online shop, which therefore adapts perfectly to display on all devices, both fixed and mobile.

2. Free and open source

PrestaShop is a totally free and open source platform . You will be able to create a personalized and customizable E-Commerce, quickly and easily. Basically, PrestaShop makes eCommerce website development much easier and more accessible. This CMS is present in over 65 countries and boasts a beautiful community with over one million active members. Thanks to the Community, many improvements to the platform have been possible.

3. Payment gateway

Clearly, if you have an E-Commerce site, one of the fundamental aspects is certainly that linked to payments . With PrestaShop, you can take advantage of different payment gateways such as PayPal, Amazon Pay, Worldpay, Discover Global Network, First Data and Authorize.Net. Furthermore, there are more than 250 payment service providers as add-ons.

4. Marketing Tools

But since an E-Commerce is nothing if it doesn’t have a good¬†marketing strategy,¬†PrestaShop offers you the possibility to add customized features.¬†Among these we find many marketing tools, such as: discount mode, free shipping, special offers, email marketing, affiliate programming, gift wrapping, coupon codes and many others.

In fact, this aspect is fundamental for customer loyalty. A cuddle, which can be a reserved offer, a discount, a gift box, are all strategies that can make the customer come back to buy on our E-Commerce.

5. Easy customization

As I told you, marketing activities are essential for the success of a site. With PrestaShop, you will be able to take advantage of a large variety of modules, which allow you to implement its features. Among these, we find modules such as:

  • cross-selling
  • Subscribe to the newsletter
  • offers and discounts

which can be activated with a single click. These modules can help you customize the site according to your needs.

You will find all modules in the PrestaShop marketplace

6. SEO-friendly

SEO is the most important thing for any E-Commerce business, because a site can be beautiful and functional, but if no one finds it, it surely won’t sell.

PrestaShop makes it easy to develop SEO-friendly URLs. If you have a basic understanding of search engine optimization, PrestaShop allows you to easily edit your title tags, meta title, meta description and other SEO related attributes.

7. Internationality

If you want to extend your market internationally , you must work to ensure that the customer can read the content on your site in their own language.

PrestaShop supports more than 75 languages ‚Äč‚Äčworldwide and allows you to edit the site translation.¬†It also allows you to download language packs for different countries to meet the needs of your target audience.

8. Analysis and statistics

Analysis and statistics play a fundamental role in understanding the progress of your sales activity. Thanks to these, in fact, we can understand where to act and change our strategy.

Prestashop helps to keep track of our website visitors and their conversion point. Thanks to these activities, we can actually modulate our strategy, perhaps offering discounts or personalized offers.

In PrestaShop troverai una dashboard molto utile che include pi√Ļ di 20 formati di report di stato che possono aiutare a decidere una strategia di crescita aziendale. Nel marketplace sono disponibili gratuitamente anche altri addon per analisi e statistiche.

9. Piattaforma PrestaShop in costante miglioramento

PrestaShop è una piattaforma volta al miglioramento continuo. In questi anni infatti, è cambiato molto, adattandosi a quelle che erano le richieste dei clienti e del mercato.

Se infatti osserviamo il suo percorso, vediamo che la piattaforma si è evoluta molto e continua a rilasciare nuovi aggiornamenti.

PrestaShop ha prestato particolare attenzione al suo marketplace dove troverai molti moduli ed estensioni per migliorare il tuo E-Commerce.

Conclusion

We have seen the general characteristics of PrestaShop and why it is one of the most used platforms.

Its maintenance and prices are much cheaper than other platforms , not to mention that it allows even a non-technical person to work with it and customize it. Then, in case you are looking for custom solutions, you can always hire PrestaShop developers to help you.

PrestaShop is multilingual and multi-currency software that allows you to launch your site internationally.¬†Not to mention that the platform is constantly improving and what’s better than a large community that extends its support in all types of PrestaShop development services.

ūüöÄ Give your website a boost!
Try bhoost hosting for free for 30 days