Описание
Magento stored cross-site scripting vulnerability
Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
Пакеты
Наименование
magento/community-edition
composer
Затронутые версииВерсия исправления
>= 2.3.0, <= 2.3.3
2.3.4
Наименование
magento/community-edition
composer
Затронутые версииВерсия исправления
<= 2.2.10
2.2.11
Наименование
magento/core
composer
Затронутые версииВерсия исправления
< 1.9.4.4
1.9.4.4
Связанные уязвимости
CVSS3: 6.1
nvd
около 6 лет назад
Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.