0.003 Low
EPSS
Percentile
66.2%
magento/community-edition is vulnerable to remote code execution (RCE). The vulnerability exists as a user with admin privileges to layouts can execute code through a XML layout update.
magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-13