CISA has urged federal agencies to urgently patch CVE-2026-45247, a critical PHP object injection flaw in the Mirasvit Full Page Cache Warmer for Magento 2 that is being exploited in the wild for remote code execution. Organizations running Mirasvit Cache Warmer versions before 1.11.12 should update immediately, and defenders can look for suspicious CacheWarmer cookies as indicators of exploitation attempts. #CVE-2026-45247 #Mirasvit #Magento2 #AdobeCommerce #CISA
Keypoints
- CISA added CVE-2026-45247 to its Known Exploited Vulnerabilities catalog.
- The flaw affects the Mirasvit Full Page Cache Warmer for Magento 2 extension.
- Attackers can use crafted serialized PHP objects to trigger remote code execution.
- Systems running versions before 1.11.12 are potentially exposed.
- Sansec advises checking CacheWarmer cookies for signs of exploitation.
Read More: https://www.securityweek.com/mirasvit-vulnerability-exploited-to-execute-code-on-magento-servers/