Threat actors are using a critical Magento vulnerability to install a persistent backdoor on ecommerce websites, according to cybersecurity firm Sansec.
The vulnerability, identified as CVE-2024-20720 (CVSS score of 9.1), is described as an OS command injection flaw that allows arbitrary code execution without user interaction. Adobe addressed the critical vulnerability in both Adobe Commerce and Magento in February 2024 as part of its Tuesday Patch updates. However, it appears that some websites have yet to be updated and are vulnerable to exploitation.
According to Sansec, threat actors have discovered a clever way to exploit CVE-2024-20720 by injecting XML code into Magento servers using a crafted database layout template.
Read More: Magento Vulnerability Exploited to Deploy Persistent Backdoor
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.