Checkpoint has discovered a vulnerability in Magento . Now should be applied as soon as possible to resolve because Checkpoint publish more details in the next days.

Magento already has published updated packages .

Here ‘s a little guide , you need to have an SSH access :

1. Download the patch files ( patch SUPEE – 5344 and SUPEE – 1533 ) : https://www.magentocommerce.com/products/downloads/magento/

2. On the server in the Magento root directory upload .

3. Run with ” sh PATCH_SUPEE-1533_EE_1.13.x_v1-2015-02-10-08-18-32.sh ” and “sh PATCH_SUPEE – 1533_EE_1.13.x_v1-2015-02-10-08-18-32.sh”

That’s it already. Warning , the patch versions can differ depending of installed Magento version. The execution command sh is also dependent on the operating system .

Did it work ? You can check it out here : http://shoplift.byte.nl/

UPDATE :

Checkpoint has now announced the details : http://blog.checkpoint.com/2015/04/20/analyzing-magento-vulnerability/