Vulnerabilities3 min read
Magento Cache Plugin RCE Under Active Exploit — CISA Sets June 6 Deadline
CVE-2026-45247 in Mirasvit Full Page Cache Warmer allows unauthenticated RCE via PHP deserialization. CISA confirms active exploitation targeting e-commerce sites.
Marcus ChenJun 4, 2026