Security Center

Get the latest patches, security updates, and best practices for your Magento sites

NEW! Magento Security Scan Tool

Monitor your sites for security risks, update malware patches, and detect unauthorized access with Magento Security Scan, the latest FREE tool from Magento Commerce.

Go to Security Scan

< Security Center

Filter by topic

Tagged:

Vulnerability

Security Update for Potential Vulnerability in Magento Admin URL location
May 10, 2019

An issue has been discovered in Magento Open Source and Magento Commerce that can be used to disclose the URL location of a Magento Admin panel. To best protect your store, Magento has released patches and recommends additional security steps to protect your store

Patches
MAGENTO 2.2.3, 2.1.12 AND 2.0.18 SECURITY UPDATE
Feb 27, 2018

These versions contains multiple security updates. Risk: Major for Magento Commerce and Magento Open Source prior to 2.0.18, 2.1.12, and 2.2.3.

Patches
SUPEE-10570
Feb 27, 2018

This patch contains several security updates. Risk: Major for Magento Commerce prior to 1.14.3.8 and Open Source prior to 1.9.3.8.

Patches
SUPEE-10415
Nov 28, 2017

This patch contains several security updates. Risk: Major for Magento Commerce prior to 1.14.3.7 and Open Source prior to 1.9.3.7.

Patches
MAGENTO 2.2.1, 2.1.10 AND 2.0.17 SECURITY UPDATE
Nov 7, 2017

These versions contains multiple security updates. Risk: Critical for Magento Commerce and Magento Open Source prior to 2.0.17, 2.1.10, and 2.2.1.

News
New Zend Framework 1 Security Vulnerability
Jan 13, 2017

Merchants should check their mail sending settings to protect against a Zend Framework 1 vulnerability.

Vulnerabilities
New Linux Operating System Vulnerability
Oct 24, 2016

Learn how to protect your store from a newly-discovered vulnerability present in all major Linux Operating Systems

Vulnerabilities
SQL Injection Vulnerability
Apr 26, 2016

An SQL injection vulnerability has been found in multiple third-party extensions and themes