{"uuid": "bfd20fc7-729f-48ff-b64b-e083e2431777", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-20720", "type": "exploited", "source": "https://t.me/tengkorakcybercrewz/960", "content": "The Hacker News\nHackers Exploit Magento Bug to Steal Payment Data from E-commerce Websites\n\nThreat actors have been found exploiting a critical flaw in Magento to inject a persistent backdoor into e-commerce websites.\nThe attack leverages CVE-2024-20720 (CVSS score: 9.1), which has been described by Adobe as a case of \"improper neutralization of special elements\" that could pave the way for arbitrary code execution.\nIt was addressed by the company as part of", "creation_timestamp": "2024-04-06T15:24:33.000000Z"}