2 matches found
CVE-2019-7926
A stored cross-site scripting vulnerability exists in the admin panel of Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This could be exploited by an authenticated user with privileges to modify node attributes to inject malicious javascript...
CVE-2019-7926
CVE-2019-7926 is a stored cross-site scripting vulnerability in Magento’s admin panel. Affected Magento versions are 2.1.x before 2.1.18, 2.2.x before 2.2.9, and 2.3.x before 2.3.2. The issue can be exploited by an authenticated user with privileges to modify node attributes to inject malicious J...