2 matches found
CVE-2019-7854
An insecure direct object reference IDOR vulnerability in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 can lead to unauthorized disclosure of company credit history details...
CVE-2019-7854
CVE-2019-7854 is an insecure direct object reference (IDOR) vulnerability in Magento. Affected: Magento 2.1 before 2.1.18, 2.2 before 2.2.9, and 2.3 before 2.3.2. Root cause: misdirected access to sensitive data (unauthorized disclosure of company credit history details) via IDOR. Impact: potenti...