Magento eCommerce CE v2.3.5-p2 - Blind SQL injection Vulnerability

Exploit Title: Magento eCommerce CE v2.3.5-p2 - Blind SQLi Exploit Author: Aydin Naserifard Vendor Homepage: https://www.adobe.com/ Software Link: https://github.com/magento/magento2/releases/tag/2.3.5-p2 Version: 2.3.5-p2 Tested on: 2.3.5-p2 POC: 1PUT...

Magento eCommerce - Remote Code Execution Exploit

Magento shoplift exploit that adds an administrator account. Flaw originally discovered by CheckPoint. Exploit Title : Magento Shoplift exploit SUPEE-5344 Author : Manish Kishan Tanwar AKA error1046 Date : 25/08/2015 Love to : zero cool,Team indishell,Mannu,Viki,Hardeep Singh,Jagriti,Kishan Singh...

Magento eCommerce Local File Disclosure Vulnerability (Jul 2012)

Magento eCommerce is prone to a local file disclosure vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Magento eCommerce Platform XXE Injection

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Local file disclosure via XXE injection product: Magento eCommerce Platform Enterprise & Community Edition vulnerable version: Magento eCommerce Platform Enterprise Editi...

Magento eCommerce Local File Disclosure

Exploit for php platform in category web applications ======================================================================= title: Local file disclosure via XXE injection product: Magento eCommerce Platform Enterprise & Community Edition vulnerable version: Magento eCommerce Platform Enterprise...