Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

jeudi 30 juillet 2020

Shopware up to 6.2.2 Mediabrowser File Upload SVG Image Persistent cross site scripting

A vulnerability, which was classified as problematic, has been found in Shopware up to 6.2.2. Affected by this issue is an unknown functionality of the component Mediabrowser File Upload. Upgrading to version 6.2.3 eliminates this vulnerability.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 35


Événements SSI