Magento warns of vulnerability in e-commerce platform

Spread the love

Magento now also warns its customers about a security vulnerability in its software for online stores. This is a bug that allows remote code injection. Earlier, security researchers already came with warnings.

On its blog, Magento tries to warn customers about the so-called remote code execution bug. According to the company, it is a critical bug and customers using the e-commerce platform should update to the latest version of the software as soon as possible: a patch was released on February 9 that would have fixed the bug. Magento has opened a web page where webshop owners can check whether they are still susceptible to the bug.

Although a patch has already been released, it is the first time that the company has spoken about the size of the bug. Both Enterprise Edition and Community Edition are affected by the bug. Whoever manages to inject malicious code can gain full control over the web store. Hackers can also get their hands on customer data, according to Magento.

Earlier, security researchers said that Magento’s software, which is used by many online store owners, was vulnerable. They warned the company in January, but recently made their discovery public. A few years ago, a major bug in the e-commerce platform was revealed.

You might also like