更新: 2933 个文件 - 2026-03-18 11:36:11

08-threat-intel/registry/triage/magento-open-source--ede23f2bd3.json

@@ -0,0 +1,12 @@
+{
+  "canonical_id": "magento-open-source--ede23f2bd3",
+  "system_id": "magento-open-source",
+  "title": "Hackers breached Magento through helpdesk   2017-12-28  Magento merchants have recently received messages like this: Hey, I strongly recommend you to make a redesign! Please contact me if you need a good designer! -- knockers@yahoo.com Upon closer examination, the message contains a specially crafted sender that contains an XSS attack: an attempt to...   skimming",
+  "reasons": [
+    "missing affected/fixed version details"
+  ],
+  "candidate_count": 1,
+  "references": [
+    "https://sansec.io/research/hackers-breach-magento-through-helpdesk"
+  ]
+}