Magmi is an open-source tool for importing content into the Magento e-commerce platform. Security vendor Trustwave says Magmi has a zero-day vulnerability in some versions of the tool. Magmi can be downloaded from GitHub or SourceForge, but only the version on SourceForge is vulnerable. Trustwave has notified Magmi’s developer and Magento, which has contacted the operators of 1,700 websites that appear be vulnerable. The vulnerability could allow access to Magento site credentials and the encryption key for the database.”]