Lucene search
AdobeCVELIST:CVE-2019-8128HistoryNov 05, 2019 - 11:02 p.m.
CVE-2019-8128
2019-11-0523:02:01
adobe
www.cve.org
A stored cross-site scripting (XSS) vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user can exploit it by injecting malicious Javascript into the name of main website.
CNA Affected
[
{
"product": "Magento 2",
"vendor": "Adobe Systems Incorporated",
"versions": [
{
"status": "affected",
"version": "Magento 2.2 prior to 2.2.10"
},
{
"status": "affected",
"version": "Magento 2.3 prior to 2.3.3 or 2.3.2-p1"
}
]
}
]Related
prion
prion
Cross site scripting
2019-11-06 00:15:00
osv
osv
CVE-2019-8128
2019-11-06 00:15:10
cve
cve
CVE-2019-8128
2019-11-06 00:15:10
nvd
nvd
CVE-2019-8128
2019-11-06 00:15:10
veracode
veracode
Cross-Site Scripting (XSS)
2024-06-20 10:22:40
github
github
Magento Cross-Site Scripting via store name
2022-05-24 17:00:26
friendsofphp
friendsofphp
PRODSECBUG-2426: Cross-Site Scripting via store name
2019-10-08 00:00:00
openvas
openvas