Prestashop version 1.5.5 suffers from a CRLF injection vulnerability that allows for addition of headers…. Prestashop version 1.5.5 suffers from a CRLF injection vulnerability that allows for addition of headers.
Read more http://packetstormsecurity.com/files/123128/prestashop155-inject.txt