A critical vulnerability in Magento’s PolyShell has been identified that allows unauthenticated users to upload files, execute remote code, and take over accounts. The flaw presents significant security risks to Magento installations without proper patching. Organizations running affected versions are advised to apply security updates urgently to mitigate potential exploitation.
Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover – The Hacker News
Leave a Comment
Leave a Comment