CVE-2021-21064

Magento UPWARD-php version 1.1.4 and earlier is affected by a Path traversal vulnerability in Magento UPWARD Connector version 1.1.2 and earlier due to the upload feature. An attacker could potentially exploit this vulnerability to upload a malicious YAML file that can contain instructions which...

CVE-2021-21064

CVE-2021-21064 affects Magento UPWARD-php (versions 1.1.4 and earlier) via the UPWARD Connector (versions 1.1.2 and earlier). The issue is a path traversal vulnerability caused by the upload feature that could let an attacker with admin console access upload a malicious YAML file and read arbitra...

CVE-2021-21064 Magento UPWARD-php Path traversal vulnerability via UPWARD Connector

Magento UPWARD-php version 1.1.4 and earlier is affected by a Path traversal vulnerability in Magento UPWARD Connector version 1.1.2 and earlier due to the upload feature. An attacker could potentially exploit this vulnerability to upload a malicious YAML file that can contain instructions which...

Magento UPWARD-php Path Traversal Vulnerability

Adobe Magento is the United States of America Odobie Adobe company's set of open source PHP e-commerce system . The system provides rights management, search engine and payment gateway and other functions. A security vulnerability exists in Magento UPWARD-php version 1.1.4, which can be exploited...