CVE-2021-28566
Magento information disclosure vulnerability (CVE-2021-28566) affects Magento Open Source/Commerce versions 2.4.2 and earlier, 2.4.1-p1 and earlier, and 2.3.6-p1 and earlier. The issue arises when uploading a modified PNG image to a product image, potentially allowing an unauthenticated attacker ...