Magento is vulnerable to remote file inclusion. The vulnerability is possible because the fetchView()
function in the Mage_Core_Block_Template_Zend
class does not enforce security mechanisms, allowing an authenticated administrator to execute arbitrary PHP code on the web server.
CPE | Name | Operator | Version |
---|---|---|---|
magento/core | le | 1.9.1.0 | |
firegento/magento | le | 1.9.1.0 |
blog.checkpoint.com/2015/04/20/analyzing-magento-vulnerability/
magento.com/blog/technical/critical-security-advisory-remote-code-execution-rce-vulnerability
www.securitytracker.com/id/1032194
blog.checkpoint.com/2015/04/20/analyzing-magento-vulnerability/
magento.com/blog/technical/critical-security-advisory-remote-code-execution-rce-vulnerability
magento.com/security-patch