CVE-2019-7853
CVE-2019-7853 is a stored cross-site scripting vulnerability in Magento, affecting Magento 2.1.x before 2.1.18, 2.2.x before 2.2.9, and 2.3.x before 2.3.2. The issue can be exploited by an authenticated user who has privileges to the tax notifications configuration in the Magento admin panel. Roo...