Security News > 2016 > April > Shopware update fixes RCE bug that affects both shop and target system (Help Net Security)

Shopware, an open-source e-commerce software chosen by a number of big European companies to power their online shops, has recently pushed out a critical security update. The update fixes a remote code execution bug that could allow attackers to read files on the target system, create new ones with malicious content, and run arbitrary code on the target system. “This is a critical security vulnerability that not only affect the functions of the shop, but … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/SoPkjAI_Ksw/