#magento — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #magento, aggregated by home.social.
-
502 bad gateway in magento , docker exec -it magento-php netstat -tulnp | grep 9000 not showing anything #docker #nginx #localhost #magento
-
"CVE-2026-45793: Anatomy of a 14-Hour PHP Supply-Chain Near-Miss"
https://github.com/graycoreio/github-actions-magento2/discussions/261 -
"CVE-2026-45793: Anatomy of a 14-Hour PHP Supply-Chain Near-Miss"
https://github.com/graycoreio/github-actions-magento2/discussions/261 -
"CVE-2026-45793: Anatomy of a 14-Hour PHP Supply-Chain Near-Miss"
https://github.com/graycoreio/github-actions-magento2/discussions/261 -
"CVE-2026-45793: Anatomy of a 14-Hour PHP Supply-Chain Near-Miss"
https://github.com/graycoreio/github-actions-magento2/discussions/261 -
"CVE-2026-45793: Anatomy of a 14-Hour PHP Supply-Chain Near-Miss"
https://github.com/graycoreio/github-actions-magento2/discussions/261 -
Magento Sicherheitspatch Mai 2026 – M2.4.4-p18, M2.4.5-p17, M2.4.6-p15, M2.4.7-p10, M2.4.8-p5 - APSB26-49 #beratung #betreuung #magento #magento-2 https://www.konvis.de/neuigkeiten/magento/magento-sicherheitspatch-mai-2026-m2-4-4-p18-m2-4-5-p17-m2-4-6-p15-m2-4-7-p10-m2-4-8-p5-apsb26-49/
-
Magento Design – Unterschiedliche Variante und Vorgehen #beratung #magento #magento-2 #online-marketing https://www.konvis.de/neuigkeiten/magento/magento-design-unterschiedliche-variante-und-vorgehen/
-
Produktsortiment mit AI ergänzen – Produktrecherche basierend auf Magento Onlineshop Daten #beratung #magento #magento-2 #online-marketing https://www.konvis.de/neuigkeiten/ai-ki-llm/produktsortiment-mit-ai-ergaenzen-produktrecherche-basierend-auf-magento-onlineshop-daten/
-
GPSR Magento Onlineshop Erweiterung von KonVis – GPSR (General Product Safety Regulation) Produktsicherheitsverordnung – EU-Verordnung: Ab 13. Dezember 2024 Infos zu Hersteller auf Produktseite anzeigen #beratung #eu-verordnung #magento #magento-2 https://www.konvis.de/neuigkeiten/magento/magento-online-shop-gpsr-eu-verordnung-ab-13-dezember-2024-infos-zu-hersteller-auf-produktseite/
-
GPSR Magento Onlineshop Erweiterung von KonVis – GPSR (General Product Safety Regulation) Produktsicherheitsverordnung – EU-Verordnung: Ab 13. Dezember 2024 Infos zu Hersteller auf Produktseite anzeigen #beratung #eu-verordnung #magento #magento-2 https://www.konvis.de/neuigkeiten/magento/magento-online-shop-gpsr-eu-verordnung-ab-13-dezember-2024-infos-zu-hersteller-auf-produktseite/
-
Is your Magento website crashing during traffic spikes? High traffic should mean higher sales — not downtime and lost revenue. Learn why Magento stores fail under pressure and how to fix performance issues with proper optimization, hosting, caching, and scalability strategies. Don’t let server overload hurt your brand reputation and conversions.
Read More now : https://www.exinent.com/magento-website-crashing-during-traffic-spikes/
#Exinent #Magento #Magento2 #eCommerce #WebsitePerformance #TrafficSpikes #OnlineStore #WebDevelopment -
Is your Magento store protected from downtime?
Routine maintenance keeps your store secure, fast, and running smoothly.
✔ Security patches
✔ Performance optimization
✔ Extension updates
✔ Backup monitoring
Don't wait until your website crashes. Learn More: https://www.exinent.com/magento-development-company/
#Magento #MagentoMaintenance #Ecommerce #WebsiteMaintenance #OnlineStore -
Discover why so many Magento stores lose sales due to poor optimization — from slow page loads and complicated checkout flows to weak mobile performance and SEO gaps. Learn how speed, user experience, hosting, and proper configuration directly impact conversions and revenue, and what you can do to fix them. Read the full blog now and boost your eCommerce success!
Read full blog here : https://www.exinent.com/why-magento-stores-lose-sales-poor-optimization/
#Exinent #Magento #eCommerce #Optimization #SalesGrowth #WebPerformance -
#SSI #Magento
La faille d'Adobe Magento (devenu "Adobe Commerce") permet de téléverser du code à distance, ouvrir des backdoors..., et corrompre les SI des sociétés.
L'impact potentiel est massif : 80% des sites utilisant la plateforme d'Adobe seraient impactés (au moins jusqu'à la version 2.4.9-alpha2), et elle a son propre nom : PolyShell.
https://sansec.io/research/magento-polyshellÀ ce jour, il ne semble pas y avoir de correctif en production puisque la dernière maj date du 10 mars :
https://helpx.adobe.com/fr/security/security-bulletin.html#magento -
#RGPD #SSI #Magento
La fuite de Magento (relatée ce jour), la plateforme d’e-commerce d’Adobe, pourrait engendrer la compromission des données des clients de plus de 7 500 sites (d’après Wikipedia, 250 000 commerçants l’utiliseraient dans le monde !). Parmi eux, je cite : "Toyota, Fiat, Asus, Bandai, FedEx ainsi que divers organismes publics, universités et associations". On en saura peut être plus dans les semaines à venir : https://www.cyberattaque.org/magento-7-500-sites-compromis-dans-une-vague-mondiale-de-piratage/ -
Today in "I fucked up".
A gal vibe coded her store, and she forgot to set the payment plugin to "production".
She literally lost six figures (CLP) in a single day. She only noticed when called me:
«Hey Italo, how do you remove the "Testing mode" when you pay?».
Some people must stay AWAY from a computer, at least for a while.
#VibeCoding #Programming #Coding #Code #Fail #SoftwareDevelopment #Shopify #WooCommerce #Instacart #Magento #PrestaShop #JumpSeller
-
Today in "I fucked up".
A gal vibe coded her store, and she forgot to set the payment plugin to "production".
She literally lost six figures (CLP) in a single day. She only noticed when called me:
«Hey Italo, how do you remove the "Testing mode" when you pay?».
Some people must stay AWAY from a computer, at least for a while.
#VibeCoding #Programming #Coding #Code #Fail #SoftwareDevelopment #Shopify #WooCommerce #Instacart #Magento #PrestaShop #JumpSeller
-
Today in "I fucked up".
A gal vibe coded her store, and she forgot to set the payment plugin to "production".
She literally lost six figures (CLP) in a single day. She only noticed when called me:
«Hey Italo, how do you remove the "Testing mode" when you pay?».
Some people must stay AWAY from a computer, at least for a while.
#VibeCoding #Programming #Coding #Code #Fail #SoftwareDevelopment #Shopify #WooCommerce #Instacart #Magento #PrestaShop #JumpSeller
-
Today in "I fucked up".
A gal vibe coded her store, and she forgot to set the payment plugin to "production".
She literally lost six figures (CLP) in a single day. She only noticed when called me:
«Hey Italo, how do you remove the "Testing mode" when you pay?».
Some people must stay AWAY from a computer, at least for a while.
#VibeCoding #Programming #Coding #Code #Fail #SoftwareDevelopment #Shopify #WooCommerce #Instacart #Magento #PrestaShop #JumpSeller
-
Today in "I fucked up".
A gal vibe coded her store, and she forgot to set the payment plugin to "production".
She literally lost six figures (CLP) in a single day. She only noticed when called me:
«Hey Italo, how do you remove the "Testing mode" when you pay?».
Some people must stay AWAY from a computer, at least for a while.
#VibeCoding #Programming #Coding #Code #Fail #SoftwareDevelopment #Shopify #WooCommerce #Instacart #Magento #PrestaShop #JumpSeller
-
Vulnerability in REST API allows attackers to upload executable files.
Unrestricted file upload: all #Magento #OpenSource and #AdobeCommerce versions up to 2.4.9-alpha2
#XSS: all versions pre-2.3.5 or custom webserver config
#RCE via #PHP upload: #nginx 2.0.0–2.2.x (via index.php filename), any non-stock version nginx passing all .php to fastcgi, #Apache pre-2.3.5 without php_flag engine 0
Patched: 2.4.9-alpha3+ (pre-release only)
-
Les 15 Meilleurs CMS les plus populaires en 2026 #cms #blog #php #flat #mysql #mariadb #wordpress #drupal #joomla #expressionengine #typo3 #movabletype #magento #concrete5 #textpattern #alfresco #e107 #contao #cushysms #plone #spip
🌎 https://www.tophebergeur.com/blog/meilleurs-cms/ -
Модульный монолит против микросервисов: прагматизм вместо хайпа
От моды к здравому смыслу: почему архитектура перестала слушать маркетинг и начала считать
1. Введение: Эпоха «религиозной» архитектуры
Примерно в 2015 году в индустрии разработки программного обеспечения...
#DST #DSTGlobal #ДСТ #ДСТГлобал #DSTplatform #ДСТПлатформ #Модульныймонолит #микросервисы #прагматизм #CMS #CMF #хайп #разработка #Magento #PHP #Архитектура #Laravel #Symfony #Drupal
Источник: https://dstglobal.ru/club/1153-modulnyi-monolit-protiv-mikroservisov-pragmatizm-vmesto-haipa
-
Ey, #Wikipedia… Warum machst Du es mir so schwer?
Mein aktueller Account ist 15 Jahre alt. Ich habe gerade einmal 139 Bearbeitungen, weil ich meine Wiki-Aktivitäten einfach auf das Kiel WIki und die SPD Geschichtswerkstatt verlagert habe, weil sowieso mindestens jede zweite Änderung von irgendwem eingestampft wird.
Ich hatte damals bspw. den EIntrag für #Magento angelegt. Gelöscht wegen Irrelevanz.
Ich mach fast gar nichts mehr in der WIkipedia. Neulich habe ich einem User geholfen in seinem Userspace einen Eintrag für die #OSBA anzulegen. Auch habe aber auch den Eintrag zu meiner alten Schule ergänzt und die Mitarbeiterzahl beim HVV, n Foto von Franzi Kühne ergänzt…
Jetzt bekomme ich eine Aufforderung offenzulegen, ob ich da ein Marketing- oder PR-Konto betreibe…!? Wirr. :think_bread: -
Angreifer attackieren kritische Lücke in #AdobeCommerce und #Magento | Security https://www.heise.de/news/Angreifer-attackieren-kritische-Luecke-in-Adobe-Commerce-und-Magento-10845752.html #SessionReaper #Adobe #AdobeMagento #Patchday
-
SessionReaper Exploits Erupt as Magento Sites Lag on Patching https://thecyberexpress.com/sessionreaper-exploits-erupt/ #SessionReaperExploitation #ExploitedVulnerabilities #VulnerabilitiesPatching #ThreatIntelligence #VulnerabilityNews #Vulnerabilities #CyberEssentials #FirewallDaily #AdobeCommerce #SessionReaper #CyberNews #Magento
-
Thousands of online stores at risk as SessionReaper attacks spread https://www.malwarebytes.com/blog/news/2025/10/thousands-of-online-stores-at-risk-as-sessionreaper-attacks-spread #holidaythreats #SessionReaper #webstores #Threats #magento #News
-
⚠️ "Six semaines après le correctif d’urgence d’Adobe pour #SessionReaper (CVE-2025-54236), la vulnérabilité est entrée dans une phase d’exploitation active."
➡️ Selon Sansec Seuls 38 % des sites #Magento sont à jour — 3 sur 5 restent vulnérables à une exécution de code à distance
Détails techniques et timeline complète sur le blog de Sansec.
👇
https://sansec.io/research/sessionreaper-exploitationArticle FR
👇
https://infosec.pub/post/36573308Analyse technique / dff du patch
👇
https://slcyber.io/assetnote-security-research-center/why-nested-deserialization-is-still-harmful-magento-rce-cve-2025-54236/Détails (G)CVE
👇
https://cve.circl.lu/vuln/CVE-2025-54236 -
A dangerous flaw in Adobe Commerce lets hackers hijack customer sessions with zero effort—and 60% of Magento stores are still unpatched. Is your business vulnerable?
#sessionreaper
#adobecommerce
#magento
#cve202554236
#ecommercesecurity -
🚨 Critical Magento & Adobe Commerce Flaw (CVE-2025-54236 – SessionReaper) 🚨
Impact: Customer account takeover + unauthenticated remote code execution (CVSS 9.1 Critical).
👉 Full details and action steps: https://hostvix.com/sessionreaper-critical-magento-adobe-commerce-vulnerability-cve-2025-54236/
#Magento #AdobeCommerce #SessionReaper #CVE202554236 #CVE #Infosec #CyberSecurity #AppSec #WebSecurity #SecOps #BlueTeam #RedTeam #ThreatIntel #Vulnerability #PatchNow #ZeroDay #Exploit #EcommerceSecurity #DataSecurity #SecurityUpdate
-
Adobe Issues Urgent Patch for ‘SessionReaper’ Vulnerability in Commerce and Magento https://thecyberexpress.com/adobe-commerce-flaw-cve-2025-54236/ #TheCyberExpressNews #Vulnerabilities #TheCyberExpress #FirewallDaily #AdobeCommerce #SessionReaper #CVE202554236 #CyberNews #Magento
-
Adobe Commerce is under threat—a new flaw, SessionReaper, lets hackers hijack live sessions like an open front door. Learn why immediate patching is crucial to keep your eCommerce safe.
#sessionreaper
#adobecommerce
#magento
#cybersecurity
#vulnerability -
Should you find yourself in the unfortunate position of running (or being otherwise responsible for) a Magento / Adobe Commerce platform...you may wanna update _today_
https://sansec.io/research/sessionreaper
TL;DR CVE-2025-54236: possible unauthenticated RCE and customer account takeover
-
PHP: Вечный спор. Почему его ругают, но на нем до сих пор пишут?
В мире технологий, где языки и фреймворки сходят со сцены, не успев получить признания, PHP демонстрирует феноменальную устойчивость. Это один из самых парадоксальных феноменов в индустрии: язык...
#DST #DSTGlobal #ДСТ #ДСТГлобал #языкпрограммирования #DSTplatform #ДСТПлатформ #Laravel #Go #Rust #CMS #MODX #DiafanCMS #Magento #CSCart #OpenCart #CMF #Framework #Drupal #ORM #Symfony #Yii
Читать далее: https://dstglobal.ru/club/1105-php-vechnyi-spor-pochemu-ego-rugayut-no-na-nem-do-sih-por-pishut
-
We ❤️ great people building apps that empower other folks to use our tools! The new open‑source #Magento module – from @jesperingels and the team at Bluebird Day – lets you integrate our real user monitoring into your Magento project in minutes – no coding required!
Discover the benefits of gathering real user data, plus how to get started: https://www.speedcurve.com/blog/real-user-monitoring-magento/
-
When Easypara one of France's largest online pharmacies, needed to migrate its infrastructure to a new PaaS provider, it couldn't afford disruption.
With Platform.sh and Agence Dn'D, Easypara built a flexible and fault-tolerant infrastructure quickly without rearchitecting their apps. Discover how they achieved a seamless migration with zero downtime and a better developer workflow → https://bit.ly/easypara-case-study
#ecommerce #magento #migration #businesstransformation #businesssuccess #casestudy
-
#Adobe-#Patchday: Neun Produkte mit Sicherheitslücken | Security https://www.heise.de/news/Adobe-Patchday-Neun-Produkte-mit-Sicherheitsluecken-9974474.html #AdobeLightroom #AdobeInDesign #AdobeFrameMaker #AdobeCommerce #AdobeMagento #AdobeAnimate #AdobeSubstance3DStager #AdobeSubstance3DPainter #AdobeDimension #AdobeInCopy #Lightroom #InDesign #FrameMaker #Commerce #Magento #Animate #Substance3DStager #Substance3DPainter #Dimension #InCopy
-
🚨 New Perspective on #Magento #XXE Vulnerability! 🚨
Most write-ups cover the basic arbitrary file read vector. We’ve taken it further to demonstrate how CVE-2024-34102 can be chained to impersonate an admin user! 🔐
https://github.com/redwaysecurity/CVEs/tree/main/CVE-2024-34102
-
Why you should care about the exploitation of CVE-2024-20720:
A similar Adobe Commerce and Magento Open Source vulnerability CVE-2022-24086 (9.8 critical, disclosed 13 February 2024 by Adobe as a zero-day; improper input validation) was "exploited in the wild in very limited attacks targeting Adobe Commerce merchants." CVE-2022-24086 was added to CISA's KEV Catalog on 15 February 2024, so there is a strong possibility that they would consider CVE-2024-20720. 🔗 https://helpx.adobe.com/security/products/magento/apsb22-12.html#CVE_2024_20720 #Adobe #Commerce #Magento #eitw #activeexploitation #threatintel #IOC
-
Sansec reports active exploitation of CVE-2024-20720 (9.1 critical, disclosed 13 February 2024 by Adobe; Adobe Commerce/Magento Open Source OS command injection) to inject a fake Stripe payment skimmer, which would copy payment data to a compromised Magento store. IOC provided. 🔗 https://sansec.io/research/magento-xml-backdoor
#CVE_2024_20720 #Adobe #Commerce #Magento #eitw #threatintel #activeexploitation #IOC
-
Updated Post: 10 Best Open Source Shopping Carts Ranked for 2023
#AbanteCart #Bagisto #CEPhoenixCart #LiteCart #Magento #OpenCart #osCommerce #PrestaShop #ThirtyBees #WebHosting #WhatACart #XCart #ZenCart
https://blog.radwebhosting.com/10-best-open-source-shopping-carts-ranked