3 matches found
CVE-2015-1397
creationtimestamp| type| source ---|---|--- 2016-08-23 13:20:51+00:00| seen| MISP/57b5892a-bfd8-49f1-8d6b-4a3d950d210f 2025-08-30 21:02:24+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lxnhua7kpl2g...
CVE-2015-1397
CVE-2015-1397 concerns a SQL injection in Magento. Affected products are Magento Community Edition 1.9.1.0 and Enterprise Edition 1.14.1.0. The flaw is in the getCsvFile function of Mage_Adminhtml_Block_Widget_Grid, where the parameters popularity[from]/popularity[to] and the related popularity[f...
Magento eCommerce Web Sites SQL Injection (CVE-2015-1397)
An SQL injection vulnerability has been reported in Magento component. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...