Magento is an open source content management platform that focuses on e-commerce. Magento runs on an environment with Linux, Apache, MySQL and PHP. The package is available in two flavors: Magento Open Source and Magento Commerce, previously known as Community Edition and Enterprise Edition. For more information about this platform we refer to this page where the architecture is discussed. Version 2.2.6 has been available for a few days and was announced as follows:
Magento Open Source 2.2.6 Release Notes
We are pleased to present Magento Open Source 2.2.6. This release includes 25 critical enhancements to product security, over 150 core code fixes and enhancements, and over 350 community-submitted pull requests.
Although this release includes these security enhancements, no-confirmed attacks related to these issues have occurred. However, there are certain vulnerabilities that require you to upgrade your Magento software to the latest version as soon as possible.
See Magento Security Center for a comprehensive discussion of these issues. All exploitable security issues fixed in this release (2.2.6) have been ported to 2.1.15, 184.108.40.206, and 220.127.116.11, as appropriate.