CVE-2019-7947

2019-08-0222:15:19

Google

osv.dev

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.8%

JSON

A cross-site request forgery vulnerability exists in the GiftCardAccount removal feature for Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.

CPENameOperatorVersion
devdocseq2.1.6
devdocseq2.3.0
devdocseq2.2.0
devdocseq2.2.3
devdocseq2.1.5
devdocseq2.1.1
devdocseq2.1.8
devdocseq2.3.1
devdocseq2.0.16
devdocseq2.0.13