Magento Critical Service Advisory February 10th, 2015

Magento issues a critical security advisory on February 10th for all versions

The "Valentine's Day Worm" is here!

The following security update was sent today by eBay regarding all versions of Magento Community and Enterprise editions:

Dear Magento Solution Partner,

We’d like to make you aware of an important new patch that addresses a potential security issue in Magento software. This issue allows an attacker to remotely execute code on Magento software using a specially crafted request. This issue affects all versions of Magento Enterprise Edition and Magento Community Edition.

While we have not received any reports of customers being impacted by this issue, we encourage you to immediately install the patch for your clients as preventative measure.

Recommended actions:


Subscribe to RSS - Hack