Magento releases Security Updates for Open Source and Commerce 2.x

Recently, Magento released important security updates for Open Source and Commerce 2.x. Before applying the updates into production environment, store owners should test it with the theme and extensions.

On last Nov 7th, Magento released new version of Magento Open Source and Commerce to increase the security and functionality for products in your Magento store. They are Magento Open Source and Commerce 2.2.1, 2.1.10, and 2.1.17.

These new releases consist of 15 changes of security which help close cross-site request forgery, authenticated Admin user remote code execution vulnerabilities, and unauthorized data leak together with more than 40 functional improvements and contributions from community members.

To upgrade to the Commerce updates, you can log into My Account then go to the version you want to download.

For Magento Open Source, you can download from Open Source download page.