Hi everyone,

We are experiencing a technical problem with PHP run in GCI mode.
All websites using PHP are affected, and it’s possible your shop may be impacted.
Whether PHP is running on your e-commerce website or not, we highly recommend you apply the following patch for security reasons.

To implement this fix, please do the following:
- At the root of your shop, find a file named .Htaccess
- Open the file and edit its content by simply adding this code at the bottom of the file::

RewriteEngine On

RewriteCond %{QUERY_STRING} ^(%2d|-)[^=]+$ [NC]
RewriteRule ^(.*) $1? [L]

When completed, save the file and your store will instantly be protected.

If you would like to verify that the patch worked correctly, go to the home page of your website and add “?-s” to the end of your URL. For example, http://www.myshop.com/?-s

If your homepage looks normal, then rest assure that your website is no longer affected by this problem.

If you require additional information, you can access it via the official report.

If you have any questions or require further assistance, please contact us at security@prestashop.com