3 matches found
CVE-2019-7899
Names of disabled downloadable products could be disclosed due to inadequate validation of user input in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2...
CVE-2019-7899
Names of disabled downloadable products could be disclosed due to inadequate validation of user input in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2...
CVE-2019-7899
CVE-2019-7899 affects Magento products with an input validation flaw causing disclosure of disabled downloadable product names. Affected components: Magento Open Source prior to 1.9.4.2, Magento Commerce prior to 1.14.4.2, Magento 2.1 < 2.1.18, Magento 2.2 < 2.2.9, and Magento 2.3