Magento RCE,XSS and other vulnerabilities

2024-05-1522:34:11

Google

osv.dev

magento

security enhancements

rce

xss

vulnerabilities

version 2.3.0

version 2.2.7

version 2.1.16

7 High

AI Score

Confidence

High

JSON

Magento Commerce and Open Source 2.3.0, 2.2.7 and 2.1.16 contain multiple security enhancements that help close Remote Code Execution (RCE), Cross-Site Scripting (XSS) and other vulnerabilities.

CPENameOperatorVersion
magento/community-editioneq2.1.0
magento/community-editioneq2.1.10
magento/community-editioneq2.1.7
magento/community-editioneq2.1.1
magento/community-editioneq2.2.6
magento/community-editioneq2.1.0-rc3
magento/community-editioneq2.1.0-rc1
magento/community-editioneq2.1.2
magento/community-editioneq2.2.4
magento/community-editioneq2.2.2

Name	Operator	Version
magento/community-edition	eq	2.1.0
magento/community-edition	eq	2.1.10
magento/community-edition	eq	2.1.7
magento/community-edition	eq	2.1.1
magento/community-edition	eq	2.2.6
magento/community-edition	eq	2.1.0-rc3
magento/community-edition	eq	2.1.0-rc1
magento/community-edition	eq	2.1.2
magento/community-edition	eq	2.2.4
magento/community-edition	eq	2.2.2

Rows per page:

1-10 of 261

References

github.com/FriendsOfPHP/security-advisories/blob/master/magento/product-community-edition/2018-11-28.yaml

github.com/magento/magento2

web.archive.org/web/20210802095950/https://magento.com/security/patches/magento-2.2.7-and-2.1.16-security-update

7 High

AI Score

Confidence

High

JSON