Adobe released a security update related a critical vulnerability of arbitrary code execution by attacker if exploitation is successful. Update your Magento 2 store to keep it secure. It has been found that this exploitation could affect Magento version 2.4.5 and earlier version (including 2.4.4-p1 and earlier version). Official news of the patch can be found here.
It is recommended to update your store to 2.4.4-p2 or 2.4.5-p1 as the older version Magento 2.3 or older is no longer supported. Release notes of Magento 2.4.4-p2 and 2.4.5-p1 can be found in this link:
As of Magento 2.4.4, the system requirement has been changed from PHP7.4 to PHP8.1. However, not all of Magento 2 core code has been fully compatible with PHP8.1. There are various of incompatibility, but currently we want to share one of the instance faced by the community.
Magento Quality Patches is a tool that helps developers to check and implement source code patches developed by Adobe and the Magento open source community. Using the code, developers are able to see the list of available patches for your Magento store version, apply it, and / or revert the patches. In order to get the quality patches tool, you need to run install it via the composer.
Looking at the global trend, the number of ecommerce stores are increasing as people find it comfortable to shop online from their computer and phone. However, this convenience comes with a certain security risk done by irresponsible parties looking to steal from the ecommerce stores. Similar to a brick and mortar shop, we have to be responsible and lock any security holes. If in physical store it might be a door lock or security tag on goods, security prevention of an online store is a bit different. These are 10 best practice or tips to keep your Magento store secure.
