CVE-2019-8133
CVE-2019-8133 affects Magento: Magento 2.2.x before 2.2.10 and 2.3.x before 2.3.3 or 2.3.2-p1. A user with sitemap-generation privileges can bypass access restrictions and overwrite a subset of configuration files, enabling a denial-of-service condition. Remediation: apply the Magento security up...