New ‘PolyShell' flaw allows unauthenticated RCE on Magento e-stores
From BleepingComputer to All on Thu Mar 19 16:30:04 2026
A newly disclosed vulnerability dubbed 'PolyShell' affects all Magento Open Source and Adobe Commerce stable version 2 installations, allowing unauthenticated code execution and account takeover. [...]