Download our free guide - 42 ways to improve your product page
About Us
Our Clients
Magento
Shopify
B2B
How we work
eCommerce Insights
Guides
Get in Touch
Flying Spares Case Study by magic42

Flying Spares

International B2B Magento with 240k catalogue, Khaos Control Integration and digital marketing.
Find out more
Stone Computers Case Study by magic42

Stone Computers

Adobe Magento Commerce B2C, B2B portal and PunchOut sites and bespoke loan payment solution.
Find out more
Alan-Paine-Case-Study-Featured-Image

Alan Paine

Multisite, B2C migration from Magento to Shopify Plus with ERP integration.
Find out more
haws case study image (1)

Haws Watering Cans

B2C eCommerce strategy, UX improvements, AdWords and Klaviyo email marketing management.
Find out more

Our Services

Shopify DevelopmentShopify Plus DevelopmentShopify IntegrationsShopify Retainer Support
Alan-Paine-Case-Study-Featured-Image

Alan Paine

Multisite, B2C migration from Magento to Shopify Plus with ERP integration.
Find out more
Berry Flirt smoothie pouring into a glass

Berry Flirt

Fast moving B2C theme and bundling solution on Shopify
Find out more

Call Us

Speak to a Shopify expert:

0121 663 6360

Get in touch 
April 23, 2019

Serious Magento SQL exploits discovered - have you patched yet?

A critical vulnerability in Magento e-commerce was discovered relating to an SQL injection issue and affects all versions of Magento. Magento have released a number of critical patches to fix the issue on the 26th March 2019, which should urgently be applied to ensure that your Magento store is safe from attack.

Hackers publically released code that exploits a critical vulnerability in Magento. The SQL injection issue can be adapted to plant payment card skimmers on Magento sites without the need for authentication. This would allow hackers to potentially gain access to admin accounts and possibly plant backdoors. The easiest way to protect yourself against this is to make sure you have the latest security patch installed.

PRODSECBUG-2198 is among the three dozen security bugs Magento developers have fixed. This affects the following versions of Magento:

  • Magento Commerce < 1.14.4.1
  • Magento Open Source < 1.9.4.1
  • Magento < 2.1.17
  • Magento < 2.2.8
  • Magento < 2.3.1

We recommend that our clients find time to get in touch so we can help ensure your Magento site security is up to date. You can also run the Magento Security Scanning Tool to check your site’s security status. At magic42, we take security seriously. Speak to one of our Magento Solution Specialists if you have any concerns about your website’s security.

Related services

Iterative eCommerce Growth
Magento integrations
International eCommerce

magic42 is unique in that it evolved from Mobile Fun, an award-winning online retailer with 20 years of experience, 27 international websites and a global distribution network managed from the heart of Birmingham.
Company No. 11572347 VAT No. 310 2436 61
© Copyright 2023 magic42 Limited - All Rights Reserved
linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram