7.3 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.3%
In Magento to 1.9.4.3 and Magento prior to 1.14.4.3, an authenticated user with administrative privileges for editing attribute sets can execute arbitrary code through custom layout modification.
magento.com/security/patches/supee-11219