Checkpoint has discovered a vulnerability in Magento . Now should be applied as soon as possible to resolve because Checkpoint publish more details in the next days.
Magento already has published updated packages .
Here ‘s a little guide , you need to have an SSH access :
1. Download the patch files ( patch SUPEE – 5344 and SUPEE – 1533 ) : https://www.magentocommerce.com/products/downloads/magento/
2. On the server in the Magento root directory upload .
3. Run with ” sh PATCH_SUPEE-1533_EE_1.13.x_v1-2015-02-10-08-18-32.sh ” and “sh PATCH_SUPEE – 1533_EE_1.13.x_v1-2015-02-10-08-18-32.sh”
That’s it already. Warning , the patch versions can differ depending of installed Magento version. The execution command sh is also dependent on the operating system .
Did it work ? You can check it out here : http://shoplift.byte.nl/
Checkpoint has now announced the details : http://blog.checkpoint.com/2015/04/20/analyzing-magento-vulnerability/