2 matches found
CVE-2019-7898
Samples of disabled downloadable products are accessible in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 due to inadequate validation of user input...
CVE-2019-7898
The CVE affects Magento products where samples of disabled downloadable products are accessible due to inadequate validation of user input. Affected are Magento Open Source < 1.9.4.2, Magento Commerce < 1.14.4.2, Magento 2.1 < 2.1.18, Magento 2.2 < 2.2.9, and Magento 2.3