Lucene search
PRIOn knowledge basePRION:CVE-2019-8228HistoryNov 06, 2019 - 12:15 a.m.
Code injection
2019-11-0600:15:00
PRIOn knowledge base
www.prio-n.com
1
in Magento prior to 1.9.4.3 and Magento prior to 1.14.4.3, an authenticated user with limited administrative privileges can inject arbitrary JavaScript code into transactional email page when creating a new email template or editing existing email template.
References
Related
nvd
nvd
CVE-2019-8228
2019-11-06 00:15:12
osv
osv
Magento 2 Community Edition XSS Vulnerability
2022-05-24 17:00:29
cvelist
cvelist
CVE-2019-8228
2019-11-05 23:59:27
cve
cve
CVE-2019-8228
2019-11-06 00:15:12
github
github
Withdrawn Advisory: Magento 2 Community Edition XSS Vulnerability
2022-05-24 17:00:29