3 matches found
CVE-2020-3716
Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2020-3716
Magento 2.x and 1.x versions listed (2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, 1.9.4.3 and earlier) are affected by a deserialization of untrusted data vulnerability that can lead to arbitrary code execution. Root cause is deserialization of untrusted data in the Magento codeba...
Critical Flaws in Magento e-Commerce Platform Allow Code-Execution
Critical vulnerabilities in Adobe’s Magento e-commerce platform – a favorite target of the Magecart cybergang – could lead to arbitrary code execution. Adobe issued patches on Tuesday as part of its overall release of the Magento 2.3.4 upgrade, giving the fixes a “priority 2” rating. In Adobe...