@pentest-tools.com on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Pentest-Tools.com

pentest-tools.com

did:plc:rdesfgypi36dlzlnlxze7vdp

CVE-2025-54236 affects Adobe Commerce / Magento via improper input validation in REST API calls - enabling session and account takeover *without* user interaction: https://pentest-tools.com/vulnerabilities-exploits/magento-account-takeover_27942 We’ve introduced detection & non-destructive exploit validation so offensive security teams can: 👇

2025-10-15T13:18:31.558Z