Security researchers from Securatary have identified a cross-store privilege escalation vulnerability in Magento (gostorego.com) that could have been exploited to create administrative users on any of the 200,000 active stores.
The issue was reported to eBay, via the companys bug bounty program, on February 9, 2014, and, on February 12, Securatary already confirmed that the vulnerability was patched.
According to the detailed report published by experts, an at…
Comments are closed.
