Lucene search
AdobeCVELIST:CVE-2021-21024HistoryFeb 09, 2021 - 12:00 a.m.
CVE-2021-21024 Magento Commerce Blind SQL Injection Could Lead To Unauthorized Access
2021-02-0900:00:00
CWE-89
adobe
raw.githubusercontent.com
2
Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are affected by a blind SQL injection vulnerability in the Search module. Successful exploitation could lead to unauthorized access to restricted resources by an unauthenticated attacker. Access to the admin console is required for successful exploitation.
Related
prion
prion
Sql injection
2021-02-11 20:15:00
Design/Logic Flaw
2021-04-21 21:15:00
osv
osv
CVE-2021-21024
2021-02-11 20:15:14
Magento Blind SQL Injection in the Search module
2022-05-24 17:41:56
BIT-magento-2021-21024
2024-03-06 11:00:31
cve
cve
CVE-2021-21024
2021-02-11 20:15:00
CVE-2021-21427
2021-04-21 21:15:00
github
github
Magento Blind SQL Injection in the Search module
2022-05-24 17:41:56
Backport for CVE-2021-21024 Blind SQLi from Magento 2
2021-04-22 16:11:01
cvelist
cvelist
CVE-2021-21427 Backport for CVE-2021-21024 Blind SQLi from Magento 2
2021-04-21 20:55:14
adobe
adobe
APSB21-08 Security updates available for Magento
2021-02-09 00:00:00