Adobe Patches a Magento XSS Vulnerability That Can Compromise Websites TotallyAdobe Patches a Magento XSS Vulnerability That Can Compromise Websites TotallyAdobe Patches a Magento XSS Vulnerability That Can Compromise Websites TotallyAdobe Patches a Magento XSS Vulnerability That Can Compromise Websites Totally
  • Services
    • Magento
      • Magento 2 Development Services
      • Magento 2 Upgrade
      • Magento Maintenance and Support
      • Magento Page Speed Optimization
      • Magento Hosting
      • Magento Security Audit and Patching
      • Magento Migration
      • Magento Site Audits
      • Magento PWA Development Services
      • Magento 2 Checkout Page Optimization
    • Adobe Commerce
      • Adobe Commerce Migration
      • Adobe Commerce Development Services
      • Adobe Commerce Cloud Maintaince
    • Shopware
      • Shopware Development Services
  • About Us
  • Recent Works
  • Resources
  • Blog
  • Services
    • Magento
      • Magento 2 Development Services
      • Magento 2 Upgrade
      • Magento Maintenance and Support
      • Magento Page Speed Optimization
      • Magento Hosting
      • Magento Security Audit and Patching
      • Magento Migration
      • Magento Site Audits
      • Magento PWA Development Services
      • Magento 2 Checkout Page Optimization
    • Adobe Commerce
      • Adobe Commerce Migration
      • Adobe Commerce Development Services
      • Adobe Commerce Cloud Maintaince
    • Shopware
      • Shopware Development Services
  • About Us
  • Recent Works
  • Resources
  • Blog
Contact Us
✕
What Is Shopware and Who Should Use It
What Is Shopware and Who Should Use It
October 25, 2022
5 Ecommerce Mistakes Online Sellers Must Avoid
5 Ecommerce Mistakes Online Sellers Must Avoid
October 25, 2022

Adobe Patches a Magento XSS Vulnerability That Can Compromise Websites Totally

Published by Ashu Tiwary on October 25, 2022
Categories
Uncategorized
Tags
Adobe Patches a Magento XSS Vulnerability That Can Compromise Websites Totally

A bug in the popular Magento e-commerce platform was found by James Gollat who was testing the backend to see if it was possible to delete products offline when launching an HTTP head fake.

The security update addresses a critical vulnerability in Magento. This is the 8th critical Patch Update of 2016. Adobe has urged users to update their systems to protect their websites from abuse of the flaw, which has been assigned the maximum possible severity (CVSS) score of 10.

CVE-2022-35698, a stored XSS vulnerability was patched by Adobe. You can confirm the patch installation from your Magento developer or by reaching out to your Magento development partner.

The security risk allows hackers to get hold of customer information as well to take control of the entire website.

The flaw affects versions 2.4.4-p1 and earlier, as well as 2.4.5 and earlier, of Adobe Commerce and Magento Open Source, and is addressed in 2.4.5-p1, 2.4.4-p2 versions.

The vulnerability could affect as many as 267,000 e-commerce stores that are running on Magento.

Keep reading our blog stay updated with more Magento news, updates, and security related information.

Share
0
Ashu Tiwary
Ashu Tiwary
Exinent
Exceeding Exceptions
Adobe Commerce
  • Adobe Commerce
  • Adobe Commerce Cloud Maintenance
  • Adobe Commerce Development Services
  • Adobe Commerce Migration
Magento
  • Magento Development
  • Magento Maintenance
  • Magento Security Patching
  • Magento Hosting
Company
  • About Us
  • Shopware
  • Resources
  • Blog
  • Contact Us
Registered Office
800 Park Offices Drive, Suite# 3410, RTP, NC 27709
  • 919-425-5959
  • sales@exinent.com

© 2023 Exinent LLC. All Rights Reserved.

Linkedin-in Facebook-f Twitter