{
  "canonical_id": "magento-open-source--2d2aac0d18",
  "system_id": "magento-open-source",
  "title": "Bad extensions now main source of Magento hacks: a solution!   2019-01-29  In October last year I discovered several Magento extension 0days. As it turns out, this was only the tip of the iceberg: today, insecure 3rd party extensions are used to hack into thousands of stores. A group of Magento professionals have identified 63 vulnerable extensions, and are now releasin...   skimming",
  "reasons": [
    "missing affected/fixed version details"
  ],
  "candidate_count": 1,
  "references": [
    "https://sansec.io/research/magento-module-blacklist"
  ]
}