Lucene search
GoogleOSV:GHSA-H5RM-M772-6QCXHistoryMay 24, 2022 - 5:41 p.m.
Magento stored cross-site scripting vulnerability in the admin console
2022-05-2417:41:56
Google
osv.dev
8
magento
xss
vulnerability
admin console
javascript
exploitation
Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to a stored cross-site scripting vulnerability in the admin console. Successful exploitation could lead to arbitrary JavaScript execution in the victim’s browser. Access to the admin console is required for successful exploitation.
Related
cvelist
cvelist
osv
osv
BIT-magento-2021-21023
2024-03-06 11:00:48
CVE-2021-21023
2021-02-11 20:15:14
cve
cve
CVE-2021-21023
2021-02-11 20:15:14
github
github
Magento stored cross-site scripting vulnerability in the admin console
2022-05-24 17:41:56
nvd
nvd
CVE-2021-21023
2021-02-11 20:15:14
prion
prion
Cross site scripting
2021-02-11 20:15:00
adobe
adobe
APSB21-08 Security updates available for Magento
2021-02-09 00:00:00