Advertisement
VU
HIGH
Vulnerabilities
CVE-2026-45247: Mirasvit Full Page Cache Warmer Exploited — Patch Now
CISA adds CVE-2026-45247, a deserialization vulnerability in Mirasvit Full Page Cache Warmer for Magento, to the KEV catalog after reports of active exploitation.
Runtime Rebel Intel
3 min read·Jun 3, 2026
MA
HIGH
Malware
Magecart Skimmer Hides in Pixel-Sized SVG on Magento Stores
A sophisticated Magecart campaign targets nearly 100 Magento stores, concealing credit card-stealing JavaScript within tiny, pixel-sized SVG images.
Runtime Rebel Intel
5 min read·Apr 9, 2026
VU
CRITICAL
Vulnerabilities
CVE-2024-34102: PolyShell Exploits Target 56% of Magento Stores
Attackers are aggressively exploiting the CosmicSting vulnerability (CVE-2024-34102) in Magento and Adobe Commerce stores using PolyShell polyglot web shells.
Runtime Rebel Intel
3 min read·Mar 26, 2026
VU
CRITICAL
Vulnerabilities
Magento PolyShell Vulnerability: Unauthenticated RCE Exposure
A critical flaw dubbed PolyShell affects Magento Open Source and Adobe Commerce 2.x, enabling unauthenticated remote code execution and site takeover.
Runtime Rebel Intel
4 min read·Mar 19, 2026