A new security patch SUPEE-10266 is out for Magento Commerce 1.4.3.6 and Open Source 1.9.3.6 that contain multiple security enhancements that help close cross-site request forgery (CSRF).

It is higly recommended to update your store this lastest patch to update your store with latest SUPEE-10266, click:
https://www.envisionecommerce.com/su...rity-advisory/

View more threads in the same category: