Количество 2
Количество 2
CVE-2019-8140
An unrestricted file upload vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated admin user can manipulate the Synchronization feature in the Media File Storage of the database to transform uploaded JPEG file into a PHP file.
GHSA-7pr3-34rg-g53m
Magento Unrestricted file upload vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-8140 An unrestricted file upload vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated admin user can manipulate the Synchronization feature in the Media File Storage of the database to transform uploaded JPEG file into a PHP file. | CVSS3: 4.9 | 0% Низкий | больше 6 лет назад |
| GHSA-7pr3-34rg-g53m Magento Unrestricted file upload vulnerability | CVSS3: 4.9 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу