NVD CRITICAL: CVE-2026-45247 — Mirasvit Full Page Cache Warmer for Magento 2 before version 1.11.12 contains a ...
Mirasvit Full Page Cache Warmer for Magento 2 before version 1.11.12 contains a PHP object injection vulnerability that allows unauthenticated attackers to achieve remote code execution by supplying a crafted serialized PHP object in the CacheWarmer cookie. Attackers can exploit the unrestricted call to PHP's native unserialize() function combined with gadget chains available in Magento and its de
CVE-2026-45247