Tag Archives: Magento

Magento plugs XSS holes that can lead to e-store hijacking, patch immediately!

Last week, Magento released a very important bundle of patches for their eponymous e-commerce platform that should be implemented as soon as possible. The bundle plugs a number of critical vulnerabilities, including two stored cross-site scripting (XSS) flaws that can … Continue reading

Posted in Vulnerabilidad | Tagged | Leave a comment

Phishing gone: eBay patches to block session-jacking Magento holes

Vulnerability Lab researcher Hadji Samir says eBay has squashed three vulnerabilities in its Magento shopping platform that could permit session hijacking and man-in-the-middle attacks. The penetration tester disclosed this month the vulnerabilities along with proof-of-concept videosshowing how attackers could steal … Continue reading

Posted in Cyber Security, Vulnerabilidad | Tagged , | Leave a comment