A critical vulnerability, CVE-2025-54236, dubbed “SessionReaper,” has been identified in Adobe Commerce and Magento Open Source platforms, potentially allowing attackers to seize control of customer accounts. The severity of this flaw has prompted Adobe to release an emergency patch outside of its regular update schedule. Vulnerability Details SessionReaper is characterized by an improper input validation […]
The post Critical SessionReaper Flaw in Adobe Commerce Puts Customer Accounts at Risk appeared first on SecPod Blog.