Количество 2
Количество 2
CVE-2019-8119
A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated admin user with import product privileges can delete files through bulk product import and inject code into XSLT file. The combination of these manipulations can lead to remote code execution.
GHSA-j63v-wcf9-c9hm
Magento 2 Community Edition RCE Vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-8119 A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated admin user with import product privileges can delete files through bulk product import and inject code into XSLT file. The combination of these manipulations can lead to remote code execution. | CVSS3: 7.2 | 2% Низкий | больше 6 лет назад |
| GHSA-j63v-wcf9-c9hm Magento 2 Community Edition RCE Vulnerability | CVSS3: 7.2 | 2% Низкий | больше 3 лет назад |
Уязвимостей на страницу