{"id":3368,"date":"2016-01-25T13:47:12","date_gmt":"2016-01-25T13:47:12","guid":{"rendered":"http:\/\/www.deltamatica.it\/?p=3368"},"modified":"2017-08-14T21:24:18","modified_gmt":"2017-08-14T21:24:18","slug":"magentos-critical-vulnerability-requires-immediate-update","status":"publish","type":"post","link":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/","title":{"rendered":"Magento’s critical vulnerability requires immediate update"},"content":{"rendered":"
\n
\n
\n
\n
\n
\n
<\/div>\n

Thanks to the work of Sucuri<\/a>‘s research team, a critical security flaw has been recently discovered in the popular Magento e-commerce platform.\u00a0<\/span>SUPEE-7405<\/a> Multiple Update is available for patching over 20 flaws that put the site at risk of falling under the control of cyber-criminals that can exploit them.<\/span><\/span><\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n

<\/p>\n

Virtually all versions of Magento CE before 1.9.2.3 and Magento EE prior to 1.14.2.3 are at risk. <\/span>The cause of the vulnerability is a portion of code badly written in Magento’s core libraries, back-end, or administrative control panel. <\/span>The type of vulnerability is stored Cross-site Scripting (XSS), probably the most vulnerable source for sites around the world.<\/p>\n

<\/span>All sites created or maintained by Deltamatica on a Magento basis have been updated within 2 hours after patch release. <\/span>In the 24 hours following the release of the vulnerability, several attack attempts were detected.<\/span><\/span><\/p>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

Thanks to the work of Sucuri‘s research team, a critical security flaw has been recently discovered in the popular Magento e-commerce platform.\u00a0SUPEE-7405 Multiple Update is available for patching over 20 flaws that put the site at risk of falling under the control of cyber-criminals that can exploit them.<\/p>\n","protected":false},"author":2,"featured_media":3369,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[38],"tags":[72,39],"class_list":["post-3368","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-ecommerce","tag-security"],"yoast_head":"Magento's critical vulnerability requires immediate update | Deltamatica di Raffaele D'Elia | international Web and SEO Agency<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Magento's critical vulnerability requires immediate update | Deltamatica di Raffaele D'Elia | international Web and SEO Agency\" \/>\n<meta property=\"og:description\" content=\"Thanks to the work of Sucuri‘s research team, a critical security flaw has been recently discovered in the popular Magento e-commerce platform.\u00a0SUPEE-7405 Multiple Update is available for patching over 20 flaws that put the site at risk of falling under the control of cyber-criminals that can exploit them.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/\" \/>\n<meta property=\"og:site_name\" content=\"Deltamatica di Raffaele D'Elia | international Web and SEO Agency\" \/>\n<meta property=\"article:publisher\" content=\"\/www.facebook.com\/deltamatica\" \/>\n<meta property=\"article:published_time\" content=\"2016-01-25T13:47:12+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2017-08-14T21:24:18+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.deltamatica.it\/wp-content\/uploads\/2017\/03\/Magento-Security-Patch.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"660\" \/>\n\t<meta property=\"og:image:height\" content=\"330\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admindmt\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@deltamatica\" \/>\n<meta name=\"twitter:site\" content=\"@deltamatica\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"admindmt\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/\"},\"author\":{\"name\":\"admindmt\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#\\\/schema\\\/person\\\/4cda3ae52960dda1733d1f34aa70997c\"},\"headline\":\"Magento’s critical vulnerability requires immediate update\",\"datePublished\":\"2016-01-25T13:47:12+00:00\",\"dateModified\":\"2017-08-14T21:24:18+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/\"},\"wordCount\":146,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.deltamatica.it\\\/wp-content\\\/uploads\\\/2017\\\/03\\\/Magento-Security-Patch.jpg\",\"keywords\":[\"ecommerce\",\"security\"],\"articleSection\":[\"Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/\",\"url\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/\",\"name\":\"Magento's critical vulnerability requires immediate update | Deltamatica di Raffaele D'Elia | international Web and SEO Agency\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.deltamatica.it\\\/wp-content\\\/uploads\\\/2017\\\/03\\\/Magento-Security-Patch.jpg\",\"datePublished\":\"2016-01-25T13:47:12+00:00\",\"dateModified\":\"2017-08-14T21:24:18+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.deltamatica.it\\\/wp-content\\\/uploads\\\/2017\\\/03\\\/Magento-Security-Patch.jpg\",\"contentUrl\":\"https:\\\/\\\/www.deltamatica.it\\\/wp-content\\\/uploads\\\/2017\\\/03\\\/Magento-Security-Patch.jpg\",\"width\":660,\"height\":330},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/magentos-critical-vulnerability-requires-immediate-update\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Magento’s critical vulnerability requires immediate update\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/\",\"name\":\"Deltamatica di Raffaele D'Elia | international Web and SEO Agency\",\"description\":\"Web marketing, SEO e Digital Media\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#organization\",\"name\":\"Deltamatica di D'Elia Raffaele\",\"url\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.deltamatica.it\\\/wp-content\\\/uploads\\\/2017\\\/03\\\/logo-deltamatica.png\",\"contentUrl\":\"https:\\\/\\\/www.deltamatica.it\\\/wp-content\\\/uploads\\\/2017\\\/03\\\/logo-deltamatica.png\",\"width\":300,\"height\":69,\"caption\":\"Deltamatica di D'Elia Raffaele\"},\"image\":{\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"\\\/www.facebook.com\\\/deltamatica\",\"https:\\\/\\\/x.com\\\/deltamatica\",\"https:\\\/\\\/it.linkedin.com\\\/in\\\/raffaeledelia\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.deltamatica.it\\\/en\\\/#\\\/schema\\\/person\\\/4cda3ae52960dda1733d1f34aa70997c\",\"name\":\"admindmt\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f10266d7bd077a7ee486c4ea105ecf227ce6a7e0fd209f2f13177026fa1a4a44?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f10266d7bd077a7ee486c4ea105ecf227ce6a7e0fd209f2f13177026fa1a4a44?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f10266d7bd077a7ee486c4ea105ecf227ce6a7e0fd209f2f13177026fa1a4a44?s=96&d=mm&r=g\",\"caption\":\"admindmt\"}}]}<\/script>","yoast_head_json":{"title":"Magento's critical vulnerability requires immediate update | Deltamatica di Raffaele D'Elia | international Web and SEO Agency","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/","og_locale":"en_US","og_type":"article","og_title":"Magento's critical vulnerability requires immediate update | Deltamatica di Raffaele D'Elia | international Web and SEO Agency","og_description":"Thanks to the work of Sucuri‘s research team, a critical security flaw has been recently discovered in the popular Magento e-commerce platform.\u00a0SUPEE-7405 Multiple Update is available for patching over 20 flaws that put the site at risk of falling under the control of cyber-criminals that can exploit them.","og_url":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/","og_site_name":"Deltamatica di Raffaele D'Elia | international Web and SEO Agency","article_publisher":"\/www.facebook.com\/deltamatica","article_published_time":"2016-01-25T13:47:12+00:00","article_modified_time":"2017-08-14T21:24:18+00:00","og_image":[{"width":660,"height":330,"url":"https:\/\/www.deltamatica.it\/wp-content\/uploads\/2017\/03\/Magento-Security-Patch.jpg","type":"image\/jpeg"}],"author":"admindmt","twitter_card":"summary_large_image","twitter_creator":"@deltamatica","twitter_site":"@deltamatica","twitter_misc":{"Written by":"admindmt","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/#article","isPartOf":{"@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/"},"author":{"name":"admindmt","@id":"https:\/\/www.deltamatica.it\/en\/#\/schema\/person\/4cda3ae52960dda1733d1f34aa70997c"},"headline":"Magento’s critical vulnerability requires immediate update","datePublished":"2016-01-25T13:47:12+00:00","dateModified":"2017-08-14T21:24:18+00:00","mainEntityOfPage":{"@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/"},"wordCount":146,"commentCount":0,"publisher":{"@id":"https:\/\/www.deltamatica.it\/en\/#organization"},"image":{"@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/#primaryimage"},"thumbnailUrl":"https:\/\/www.deltamatica.it\/wp-content\/uploads\/2017\/03\/Magento-Security-Patch.jpg","keywords":["ecommerce","security"],"articleSection":["Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/","url":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/","name":"Magento's critical vulnerability requires immediate update | Deltamatica di Raffaele D'Elia | international Web and SEO Agency","isPartOf":{"@id":"https:\/\/www.deltamatica.it\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/#primaryimage"},"image":{"@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/#primaryimage"},"thumbnailUrl":"https:\/\/www.deltamatica.it\/wp-content\/uploads\/2017\/03\/Magento-Security-Patch.jpg","datePublished":"2016-01-25T13:47:12+00:00","dateModified":"2017-08-14T21:24:18+00:00","breadcrumb":{"@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/#primaryimage","url":"https:\/\/www.deltamatica.it\/wp-content\/uploads\/2017\/03\/Magento-Security-Patch.jpg","contentUrl":"https:\/\/www.deltamatica.it\/wp-content\/uploads\/2017\/03\/Magento-Security-Patch.jpg","width":660,"height":330},{"@type":"BreadcrumbList","@id":"https:\/\/www.deltamatica.it\/en\/magentos-critical-vulnerability-requires-immediate-update\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.deltamatica.it\/en\/"},{"@type":"ListItem","position":2,"name":"Magento’s critical vulnerability requires immediate update"}]},{"@type":"WebSite","@id":"https:\/\/www.deltamatica.it\/en\/#website","url":"https:\/\/www.deltamatica.it\/en\/","name":"Deltamatica di Raffaele D'Elia | international Web and SEO Agency","description":"Web marketing, SEO e Digital Media","publisher":{"@id":"https:\/\/www.deltamatica.it\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.deltamatica.it\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.deltamatica.it\/en\/#organization","name":"Deltamatica di D'Elia Raffaele","url":"https:\/\/www.deltamatica.it\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.deltamatica.it\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.deltamatica.it\/wp-content\/uploads\/2017\/03\/logo-deltamatica.png","contentUrl":"https:\/\/www.deltamatica.it\/wp-content\/uploads\/2017\/03\/logo-deltamatica.png","width":300,"height":69,"caption":"Deltamatica di D'Elia Raffaele"},"image":{"@id":"https:\/\/www.deltamatica.it\/en\/#\/schema\/logo\/image\/"},"sameAs":["\/www.facebook.com\/deltamatica","https:\/\/x.com\/deltamatica","https:\/\/it.linkedin.com\/in\/raffaeledelia"]},{"@type":"Person","@id":"https:\/\/www.deltamatica.it\/en\/#\/schema\/person\/4cda3ae52960dda1733d1f34aa70997c","name":"admindmt","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f10266d7bd077a7ee486c4ea105ecf227ce6a7e0fd209f2f13177026fa1a4a44?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f10266d7bd077a7ee486c4ea105ecf227ce6a7e0fd209f2f13177026fa1a4a44?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f10266d7bd077a7ee486c4ea105ecf227ce6a7e0fd209f2f13177026fa1a4a44?s=96&d=mm&r=g","caption":"admindmt"}}]}},"_links":{"self":[{"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/posts\/3368","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/comments?post=3368"}],"version-history":[{"count":0,"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/posts\/3368\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/media\/3369"}],"wp:attachment":[{"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/media?parent=3368"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/categories?post=3368"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.deltamatica.it\/en\/wp-json\/wp\/v2\/tags?post=3368"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}