Security News Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover TheHackerNews Daniel Bender 20 Mar 2026 Magento flaw allows unauthenticated file uploads up to 2.4.9-alpha2, enabling RCE or takeover, exposing stores to attack risk.
