CVE-2021-21031
CVE-2021-21031 affects Magento Community/Commerce platforms where Magento 2.3.6 and earlier, and 2.4.x (up to 2.4.1 and 2.4.0-p1) fail to properly invalidate user sessions. The root cause, per connected documents, is insufficient session invalidation, enabling exploitation to access restricted re...