The Hacker News

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover

Magento flaw allows unauthenticated file uploads up to 2.4.9-alpha2, enabling RCE or takeover, exposing stores to attack risk ...

PolyShell attacks target 56% of all vulnerable Magento stores

Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are ...
SecurityWeek

Thousands of Magento Sites Hit in Ongoing Defacement Campaign

Over 7,500 Magento sites, including major brands and government services, were hit in an ongoing mass-defacement campaign.

New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores

A newly disclosed vulnerability dubbed 'PolyShell' affects all Magento Open Source and Adobe Commerce stable version 2 ...
The Hacker News

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites

WebRTC skimmer exploits PolyShell flaw since March 19, hitting 56.7% stores, enabling stealth data theft bypassing CSP.
Security Boulevard

Evan Rowe

What happened A newly disclosed vulnerability dubbed PolyShell affects stable Magento Open Source and Adobe Commerce version ...
PCGamesN

Subnautica 2 release date window, early access, trailers, and more

When is the Subnautica 2 release date? A decade after the original Subnautica launched into the deep blue sea of early access, Unknown Worlds has finally revealed the hit series' next evolution. While ...
PCGamesN

Slay the Spire 2 Necrobinder guide - strategy, builds, and tier list

How do you play The Necrobinder in Slay the Spire 2? In an effort to stop the monsters from emerging from the Spire and spilling into The Capital, 12 explorers set out on an expedition to save their ...
The New York Times

The Best Travel Strollers

We independently review everything we recommend. When you buy through our links, we may earn a commission. Learn more› By Elise Czajkowski Elise Czajkowski is a writer on the sleep team. She’s been ...