Lucene search
AdobeCVELIST:CVE-2019-7887HistoryAug 02, 2019 - 9:21 p.m.
CVE-2019-7887
2019-08-0221:21:40
adobe
www.cve.org
1
A reflected cross-site scripting vulnerability exists in the admin panel of Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 when the feature that adds a secret key to the Admin URL is disabled.
CNA Affected
[
{
"product": "Magento 1 Magento 2",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2"
}
]
}
]Related
cve
cve
CVE-2019-7887
2019-08-02 22:15:16
osv
osv
Magento 2 Community Edition Cross-site Scripting Vulnerability
2022-05-24 16:52:25
CVE-2019-7887
2019-08-02 22:15:16
nvd
nvd
CVE-2019-7887
2019-08-02 22:15:16
github
github
Magento 2 Community Edition Cross-site Scripting Vulnerability
2022-05-24 16:52:25
friendsofphp
friendsofphp
PRODSECBUG-2270: Reflected cross-site scripting in the admin panel
2019-06-25 00:00:00
PRODSECBUG-2270: Reflected cross-site scripting in the admin panel
2019-06-25 00:00:00
PRODSECBUG-2270: Reflected cross-site scripting in the admin panel
2019-06-25 00:00:00
prion
prion
Cross site scripting
2019-08-02 22:15:00
openvas
openvas