Bleeping Computer

Magento plugin Magmi vulnerable to hijacking admin sessions

A cross-site request forgery (CSRF) vulnerability continues to be present in the Magmi plugin for Magento online stores, despite developers receiving a report from researchers that discovered it.
GitHub

CalvinEvans/onesite-sso-magento-plugin

It is a very popular solution with a vibrant community. The ONEsite Magento plugin allows you to utilize core ONEsite SSO and social technology to extend the capabilities of your Magento store, easily ...
GitHub

magento-plugin

Magento 2 Blog Extension is a solution that helps you to create a blog on Magento and manage posts,categories, tags, authors, and comments.
ZDNet

FBI warns about attacks on Magento online stores via old plugin vulnerability

The FBI says hackers are exploiting a three-year-old vulnerability in a Magento plugin to take over online stores and plant a malicious script that records and steals buyers' payment card data. This ...
Threat Post

Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws

Two flaws – one of them yet to be fixed – are afflicting a third-party plugin used by Magento e-commerce websites. Researchers have disclosed two flaws that could enable remote code execution attacks ...
pulse.com.gh

KWIK DELIVERY releases new plugin for Magento Delivery plugin and version 2.0 of its ...

It’s been ‘smoking hot’ at Kwik Delivery (www.Kwik.delivery) these past 5 days with amazing updates rolling out of the workshop. On March 29th, 2021 Kwik Delivery released Magento Version 1.0 of the ...