Magento released a new security patch SUPEE-6788 on Oct 27, 2015 which address 10+ security issues, including remote code execution and information leak vulnerabilities. A new Magento community edition 18.104.22.168 also released which comes with all these vulnerabilities fixes included. This patch is not related to Guruincsite malware infection in thousands of magento website worldwide.
Its strongly recommended to install this patch in a development environment first as it can effect several popular extensions and customization. (more…)