{
  "canonical_id": "magento-open-source--ede23f2bd3",
  "system_id": "magento-open-source",
  "title": "Hackers breached Magento through helpdesk   2017-12-28  Magento merchants have recently received messages like this: Hey, I strongly recommend you to make a redesign! Please contact me if you need a good designer! -- knockers@yahoo.com Upon closer examination, the message contains a specially crafted sender that contains an XSS attack: an attempt to...   skimming",
  "reasons": [
    "missing affected/fixed version details"
  ],
  "candidate_count": 1,
  "references": [
    "https://sansec.io/research/hackers-breach-magento-through-helpdesk"
  ]
}