CVE-2019-7903
Magento 2.x RCE vulnerability CVE-2019-7903 affects Magento 2.1 before 2.1.18, 2.2 before 2.2.9, and 2.3 before 2.3.2. An authenticated admin can execute arbitrary code by previewing a malicious email template. Connected sources corroborate the authenticated-priority attack surface and patch guid...