3 matches found
Critical Magento Flaws Allow Code Execution
Critical flaws in Adobe’s Magento e-commerce platform – which is commonly targeted by attackers like the Magecart cybergang – could enable arbitrary code execution on affected systems. Magento is a popular, Adobe-owned open-source e-commerce platform that powers many online shops. Adobe on Tuesda...
CVE-2020-9689
Magento versions 2.3.5-p1 and earlier, and 2.3.5-p1 and earlier have a path traversal vulnerability. Successful exploitation could lead to arbitrary code execution...
CVE-2020-9689
CVE-2020-9689 affects Magento Open Source and Commerce up to 2.3.5-p1. The issue is a path traversal vulnerability that could enable arbitrary code execution on local access. Affected products include Magento 2.x; exploitation is described in public advisories (APSB20-47) and related OSV/NVD entr...