Security News > 2017 > September > Magento Patches Critical Vulnerability in eCommerce Platforms

Magento Patches Critical Vulnerability in eCommerce Platforms

2017-09-15 10:53

Magento this week released updates for Magento Commerce and Open Source 2.1.9 and 2.0.16 to address numerous vulnerabilities, including a remote code execution bug rated Critical severity. read more

News URL

http://feedproxy.google.com/~r/Securityweek/~3/_Po2UHrmzRc/magento-patches-critical-vulnerability-ecommerce-platforms

#critical #magento #vulnerability

Related news

Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks (source)
Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927) (source)
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication (source)
CrushFTP: Patch critical vulnerability ASAP! (CVE-2025-2825) (source)
Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
Gladinet’s Triofox and CentreStack Under Active Exploitation via Critical RCE Vulnerability (source)
Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence (source)
Critical Erlang/OTP SSH Vulnerability (CVSS 10.0) Allows Unauthenticated Code Execution (source)
Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028) (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Magento		3	4	103	65	27	199

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.