![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhVPfu1__SgLt5GY2q7-EIJ94yH8dd8bDkLVAub40Q1UlwX8yp6Cl3dMU1ekVsiCJr4bD_3tFP9pyP22161FFMBp_7ezMC_MzGwgKOnWnZBGmmWx4O3EbZYb0z1i9YBsTzW3V4UUz0OC6a6GoL6-Go0g96BvCR9oTeWdKA4h57QRDsbOnh8wdiN8qsXiUIo/s1600/code.jpg)
E-commerce sites using Adobe’s Magento 2 software are the target of an ongoing campaign that has been active since at least January 2023.
The attacks, dubbed Xurum by Akamai, leverage a now-patched critical security flaw (CVE-2022-24086, CVSS score: 9.8) in Adobe Commerce and Magento Open Source that, if successfully exploited, could lead to arbitrary code execution.
“The attacker seems to be
Source:: The Hackers News