Flying Spares, provider of spare parts for vintage cars and high quality marques, displaying a Rolls-Royce from their eCommerce Shopify development from magic42

Flying Spares

International B2B Magento with 240k catalogue, Khaos Control Integration and digital marketing.
See our work
Stone Computers Case Study by magic42

Stone Computers

Adobe Magento Commerce B2C, B2B portal and PunchOut sites and bespoke loan payment solution.
See our work
Alan Paine quality clothing retailer showing their brand, as featured in their case study for their eCommerce website with magic42

Alan Paine

Multisite, B2C migration from Magento to Shopify Plus with ERP integration.
See our work
Haws Watering Cans case study after eCommerce development agency, magic42, migrated their site to Shopify

Haws Watering Cans

B2C eCommerce strategy, UX improvements, AdWords and Klaviyo email marketing management.
See our work
Alan Paine quality clothing retailer showing their brand, as featured in their case study for their eCommerce website with magic42

Alan Paine

Multi-site, B2C migration from Magento to Shopify Plus with ERP integration.
Find out more
Roger Clark Motorsport automative eCommerce client case study from magic42, showing high quality silver cars in a slick garage

Roger Clark Motorsport

B2C and B2B migration of bespoke, global automotive parts website to Shopify.
Find out more

Call Us

Speak to a Shopify expert:

0121 663 6360

Get in touch 
magic42 - eCommerce development experts born from retail success

Born from a retailer

Read the full story of how our award-winning retail business developed into magic42.
Find out more
Envision Workshop documents as an outcome from our replatforming and migration meeting for your eCommerce website

How we'll work with you

Find out what it's like to partner with us and the steps involved for your eCommerce project.
Find out more
Alex Ashman, director of magic42, in a bumper car with a huge grin on his face as he mingles with his eCommerce development team at magic42

Looking for a career with us?

Take a look at what it's like to work at magic42 and the opportunities we offer.
Find out more

Call Us

Speak to our eCommerce experts:

0121 663 6360

Get in touch 

CosmicSting Magento vulnerability - why you need this patch

Author: 
Alex Ashman
Published: 
June 21, 2024
CosmicSting Vulnerability Patch for Magento

Recently, we reported that Adobe released a new security patch to fix a critical vulnerability measured on the Common Vulnerability Scoring System (CVSS) as 9.8 out of 10 in severity. This vulnerability is known as CosmicSting (aka: CVE-2024-34102) and impacts both Magento Open Source and Adobe Commerce stores. We therefore urge you to update any Magento-based sites to ensure they remain protected against attack.

The ‘bug’ enables anyone to read private files, including those with passwords, giving full control to external sources. Worst yet, the attack can be automated and lead to global hacks en masse. That means the Magento CosmicSting vulnerability needs to be protected against.

Sansec released a report that revealed that only 25% of Magento-based stores have been upgraded since the release of Adobe’s patch. This may be, in part, due to the security release impacting checkout functionality to match new PCI requirements, which we have further details of on our Magento Update 11/06/2024

As a Magento development agency, we at magic42 are helping our clients by rolling out an emergency manual patch that will better protect Magento stores from CosmicSting attacks.

If you are a client and wish for more assistance with the CosmicSting vulnerability for Magento, please get in contact with us to keep your Magento site secure for both Magento Open Source and Adobe Commerce.

magic42 logo
magic42 is a UK-based eCommerce development agency, born from an award-winning retailer. Having grown with the industry since the year 2000, we provide our unique perspective to help clients get the best from their eCommerce platforms.
Company No. 11572347 VAT No. 310 2436 61
Adobe Solution Partners Bronze Logo, used by verified Adobe expertsShopify Partners Logo (as used by Shopify Development Partners)
© Copyright 2024 magic42 Limited - All Rights Reserved
linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram