The Hacker News

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover

Magento flaw allows unauthenticated file uploads up to 2.4.9-alpha2, enabling RCE or takeover, exposing stores to attack risk ...

New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores

A newly disclosed vulnerability dubbed 'PolyShell' affects all Magento Open Source and Adobe Commerce stable version 2 ...
Pro-Linux

Sicherheit: Zwei Probleme in qemu

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-14876 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-14876 ( NVD ...
Pro-Linux

Sicherheit: Mehrere Probleme in Linux

Referenzen: https://www.cve.org/CVERecord?id=CVE-2026-23229 https://www.cve.org/CVERecord?id=CVE-2025-71126 https://www.cve.org/CVERecord?id=CVE-2026-23060 https ...