The Latest in IT Security

Magento Flaw Could Have Been Exploited to Create Administrative Users on Stores

13
Feb
2014

Security researchers from Securatary have identified a cross-store privilege escalation vulnerability in Magento (gostorego.com) that could have been exploited to create administrative users on any of the 200,000 active stores.

The issue was reported to eBay, via the companys bug bounty program, on February 9, 2014, and, on February 12, Securatary already confirmed that the vulnerability was patched.

According to the detailed report published by experts, an at…

Related posts:
  1. PayPal and Magento Bug Bounty Programs Combined Under the eBay Program
  2. Flaw on eBay’s Magento platform lets hackers attack web stores
  3. eBay’s Magento ProStore Receives Security Fix
  4. Foursquare Flaw Could Have Been Exploited to Obtain Users’ Email Addresses
  5. Flaw in Android 4.3 Can Be Exploited to Remove Device Locks with Rogue Apps

Tags:  
Written by Softpedia
0 Comments
Comments are closed.

Categories

SUNDAY, FEBRUARY 23, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments