"[intro_start]Last Wednesday (June 27), a new security patch was released by Magento: SUPEE-10752. The new security patch addresses many security issues, which, in addition to numerous minor bug fixes, mainly concern Remote Code Execution (RCE) and Cross-Site Scripting (XSS). The latter two are particularly important to secure properly. We strongly recommend that you patch or update.[intro_end]
Our advice
Magento 1: Update your Magento installation to the latest release 1.9.3.9. You will then not need to patch separately. Please note, with Magento 1.x this is often not done 'just like that'. A small investigation is usually needed to determine what the potential risks may be. If you do not want to update, then you must patch. This is important to keep your webshop and customer data safe. Note: Conflicts during the installation of patch SUPEE-10752 are usually caused by version 1 of the previous patch being installed (SUPEE-10570v1). Make sure to remove SUPEE-10570v1 and install SUPEE-10570v2 before installing SUPEE-10752. Magento 2: Update your Magento installation to the latest release 2.2.5. Your shop is then optimally secured.
Need help?
Customers of Epartment automatically receive a notification and an estimate of the work involved. Not a customer? We are happy to assist you in keeping your e-commerce platform up-to-date. Contact us to see what the impact is of updating your system. Contact us at support@epartment.nl to schedule this work."