Количество 2
Количество 2
CVE-2019-7892
A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An authenticated user with administrator privileges to access shipment settings can execute arbitrary code via server-side request forgery.
GHSA-w3r8-fxv5-58pp
Magento 2 Community Edition RCE Vulnerability via SSRF
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-7892 A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An authenticated user with administrator privileges to access shipment settings can execute arbitrary code via server-side request forgery. | CVSS3: 7.2 | 1% Низкий | больше 6 лет назад |
| GHSA-w3r8-fxv5-58pp Magento 2 Community Edition RCE Vulnerability via SSRF | CVSS3: 7.2 | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу