Описание
Fastly Magento2 sensitive information disclosure
The Fastly CDN module before 1.2.26 for Magento2, when used with a third-party authentication plugin, might allow remote authenticated users to obtain sensitive information from authenticated sessions via vectors involving caching of redirect responses.
Пакеты
Наименование
fastly/magento2
composer
Затронутые версииВерсия исправления
< 1.2.26
1.2.26
Связанные уязвимости
CVSS3: 6.5
nvd
больше 8 лет назад
The Fastly CDN module before 1.2.26 for Magento2, when used with a third-party authentication plugin, might allow remote authenticated users to obtain sensitive information from authenticated sessions via vectors involving caching of redirect responses.