2 matches found
CVE-2019-7911
A server-side request forgery SSRF vulnerability exists in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can be exploited by an authenticated user with access to the admin pan...
CVE-2019-7911
CVE-2019-7911 is a server-side request forgery (SSRF) affecting Magento products: Open Source before 1.9.4.2, Commerce before 1.14.4.2, and Magento 2.x before 2.1.18, 2.2.9, 2.3.2. An authenticated admin can manipulate system configuration and execute arbitrary code. Remediation per sources is to...