Lucene search
Veracode Vulnerability DatabaseVERACODE:25777HistoryJun 29, 2020 - 5:14 a.m.
Authorization Bypass
2020-06-2905:14:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.001 Low
EPSS
Percentile
35.9%
magento/community-edition is vulnerable to authorization bypass. The application allows an attacker to create unauthorized product discounts upon successful exploitation of the vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| magento/community-edition | eq | 2.3.5 | |
| magento/community-edition | le | 2.3.4 |
Related
github
github
Magento authorization bypass vulnerability
2022-05-24 17:21:49
cve
cve
CVE-2020-9587
2020-06-26 21:15:17
cvelist
cvelist
CVE-2020-9587
2020-06-26 20:19:07
prion
prion
Authorization
2020-06-26 21:15:00
osv
osv
CVE-2020-9587
2020-06-26 21:15:17
Magento authorization bypass vulnerability
2022-05-24 17:21:49
BIT-magento-2020-9587
2024-03-06 11:03:59
nvd
nvd
CVE-2020-9587
2020-06-26 21:15:17
openvas
openvas
Magento Multiple Vulnerabilities (APSB20-22)
2020-05-04 00:00:00
adobe
adobe
APSB20-22 Security updates available for Magento
2020-04-28 00:00:00