{"uuid": "614b35d2-73b5-4785-9804-0cca3e85427e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-20720", "type": "exploited", "source": "https://t.me/KomunitiSiber/1743", "content": "Hackers Exploit Magento Bug to Steal Payment Data from E-commerce Websites\nhttps://thehackernews.com/2024/04/hackers-exploit-magento-bug-to-steal.html\n\nThreat actors have been found exploiting a critical flaw in Magento to inject a persistent backdoor into e-commerce websites.\nThe attack leverages\u00a0CVE-2024-20720\u00a0(CVSS score: 9.1), which has been described by Adobe as a case of \"improper neutralization of special elements\" that could pave the way for arbitrary code execution.\nIt was\u00a0addressed\u00a0by the company as part of", "creation_timestamp": "2024-04-06T12:40:40.000000Z"}