Stando alle notifiche da parte degli sviluppatori di Magento, sono stati resi noti 2 bug di sicurezza.

Di seguito il report ufficiale:

 

For customers impacted by the vulnerability, two courses of action are currently available:

    • SUPEE-5344 – Addresses a potential remote code execution exploit (Added Feb 9, 2015)
    • SUPEE-1533 – Addresses two potential remote code execution exploits (Added Oct 3, 2014)

A compromise associated with this vulnerability can include the presence of unknown Magento administrative accounts in the Magento Admin control panel. For that reason, customers should verify all admin account email addresses for known accounts and reset passwords.

Articolo precedentePHP: accedere al conteggio dei like, commenti e share di un link con le API Facebook
Articolo successivoBuild Developer Conference 2015 – Microsoft presenta Visual Studio 2015 anche per OSX e Linux