6 matches found
Magento - SQL Injection
An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. id: CVE-2019-7139 info: name: Magento - SQL Injection author: MaStErChO severity: critical description: | An unauthenticated user can execute SQL...
CVE-2019-7139
creationtimestamp| type| source ---|---|--- 2024-05-04 07:34:12+00:00| seen| https://t.me/arpsyndicate/4919 2025-07-22 09:00:04+00:00| published-proof-of-concept| Telegram/qhX3xr89BIwKtdbCw4aj7nCv1kS1RppnrElOVH2el3Pmc 2025-08-03 21:02:27+00:00| seen|...
Magento SQLi Vulnerability (CVE-2019-7139)
An unauthenticated user can execute arbitrary code through an SQL injection SQLi vulnerability, which causes sensitive data leakage. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2019-7139
Magento suffers an unauthenticated SQL injection (CVE-2019-7139) that can lead to arbitrary data leakage from the underlying database. Connected advisories describe the flaw as enabling unauthorized SQL execution and exposing sensitive data such as customer information. The vulnerability is tied ...
CVE-2019-7139
An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2...
VulnCheck KEV: CVE-2019-7139
An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2...