Security Center

Get the latest patches, security updates, and best practices for your Magento sites

New Security Update

Install critical updates for Magento 1.x and Magento 2.x versions

See the Details

NEW! Magento Security Scan Tool

Monitor your sites for security risks, update malware patches, and detect unauthorized access with Magento Security Scan, the latest FREE tool from Magento Commerce.

Go to Security Scan

< Security Center

Filter by topic

Tagged:

Patches

Patches
Latest Magento Security Update Helps Protect from Recently Reported RCE Vulnerability
Nov 11, 2019

Magento is committed to delivering security updates to our customers. Because most exploits tend to target software installations that are not up-to-date with the latest security updates, we always strongly recommend that users install security updates as soon as they are available.

 

Patches
Magento 2.3.3 and 2.2.10 Security Update
Oct 8, 2019

Magento Commerce and Open Source 2.3.3, 2.3.2-p1 and 2.2.10 contain tens of security enhancements that help close Remote Code Execution (RCE), Cross-Site Scripting (XSS) and other vulnerabilities.

Merchants who have not previously downloaded a Magento 2 release should go straight to Magento Commerce or Open Source 2.3.3.

Patches
SUPEE-11219
Oct 8, 2019

SUPEE-11219, Magento Commerce 1.14.4.3 and Open Source 1.9.4.3 contain multiple security enhancements that help close remote code execution (RCE), cross-site scripting (XSS), cross-site request forgery (CSRF) and other vulnerabilities.

Patches
Magento 2.3.2, 2.2.9 and 2.1.18 Security Update 3/3
Jun 25, 2019

Magento 2.3.2, 2.2.9, and 2.1.18 contain 75 critical security enhancements. These enhancements are described in three related blog posts — the post you’re currently reading plus these two separate posts, which you can find here: Part 1 and Part 2.

Patches
Magento 2.3.2, 2.2.9 and 2.1.18 Security Update 2/3
Jun 25, 2019

Magento 2.3.2, 2.2.9, and 2.1.18 contain 75 critical security enhancements. These enhancements are described in three related blog posts — the post you’re currently reading plus these two separate posts, which you can find here: Part 1 and Part 3.

Patches
Magento 2.3.2, 2.2.9 and 2.1.18 Security Update 1/3
Jun 25, 2019

These versions contains multiple functional and security updates. Risk: Critical for Magento Commerce and Magento Open Source prior to 2.1.18, 2.2.9 and 2.3.2.

Patches
SUPEE-11155
Jun 25, 2019

This patch contains several security updates. Risk: Critical for Magento Commerce prior to 1.14.4.2 and Open Source prior to 1.9.4.2.

Patches
Magento 2.3.1, 2.2.8 and 2.1.17 Security Update
Mar 26, 2019

These versions contains multiple functional and security updates. Risk: Critical for Magento Commerce and Magento Open Source prior to 2.1.17, 2.2.8 and 2.3.1.

Patches
SUPEE-11086
Mar 26, 2019

This patch contains several security updates. Risk: Critical for Magento Commerce prior to 1.14.4.1 and Open Source prior to 1.9.4.1.

Patches
SUPEE-10975
Nov 28, 2018

This patch contains several security updates. Risk: Major for Magento Commerce prior to 1.14.4.0 and Open Source prior to 1.9.4.0.