Patch WooCommerce Custom Product Addons Pro CVE-2026-4001, verify product options, review WooCommerce orders, and inspect the site after a critical plugin update.
CISA added Mirasvit Full Page Cache Warmer CVE-2026-45247 to KEV. Magento 2 stores should update to 1.11.12 or newer, or disable the module until patched.
Patch PrestaShop CVE-2026-44212 and Strapi critical CVEs affecting e-commerce stores, headless CMS APIs, uploads, and admin workflows.
CVE-2026-34263 is a critical SAP Commerce Cloud code-execution risk. Confirm SAP Note 3733064, restrict access, patch, and review logs.
