CVE-2019-8130
CVE-2019-8130 affects Magento: specifically Magento 2.2.x before 2.2.10 and 2.3.x before 2.3.3 or 2.3.2-p1. The vulnerability allows a user with store manipulation privileges to execute arbitrary SQL queries by gaining access to the database connection through the email templates group instance. ...