lundi 25 mai 2020    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Magento up to 2.1.17/2.2.8/2.3.1 XML Layout Update Remote Code Execution

A vulnerability, which was classified as critical, was found in Magento up to 2.1.17/2.2.8/2.3.1. Affected is an unknown code of the component XML Layout Update Handler. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 Admin Panel Stored cross site scripting

A vulnerability, which was classified as problematic, has been found in Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1. This issue affects an unknown part of the component Admin Panel. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Checkout Reflected cross site scripting

A vulnerability classified as problematic was found in Magento up to 2.1.17/2.2.8/2.3.1. This vulnerability affects some unknown functionality of the component Checkout Handler. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 Admin Panel Stored cross site scripting

A vulnerability classified as problematic has been found in Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1. This affects an unknown functionality of the component Admin Panel. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Admin Panel Attribute Stored cross site scripting

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been rated as problematic. Affected by this issue is an unknown function of the component Admin Panel. The manipulation as part of a Attribute leads to a cross site scripting...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Admin Panel Stored cross site scripting

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been declared as problematic. Affected by this vulnerability is some unknown processing of the component Admin Panel. The manipulation with an unknown input leads to a cross...
Auteur: VulDB

Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 Admin Panel Stored cross site scripting

A vulnerability was found in Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1. It has been classified as problematic. Affected is an unknown code block of the component Admin Panel. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 Admin Panel Stored cross site scripting

A vulnerability was found in Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 and classified as problematic. This issue affects an unknown code of the component Admin Panel. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 Sitemap PHP Code Execution privilege escalation

A vulnerability has been found in Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 and classified as critical. This vulnerability affects an unknown part of the component Sitemap Handler. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 File Upload Configuration File Code Execution

A vulnerability, which was classified as critical, was found in Magento up to 2.1.17/2.2.8/2.3.1. This affects some unknown functionality of the component File Upload. The manipulation as part of a Configuration File leads to a privilege...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Metadata HTTP Request information disclosure

A vulnerability, which was classified as problematic, has been found in Magento up to 2.1.17/2.2.8/2.3.1. Affected by this issue is an unknown functionality of the component Metadata Handler. The manipulation as part of a HTTP Request leads to a...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Token denial of service

A vulnerability classified as problematic was found in Magento up to 2.1.17/2.2.8/2.3.1. Affected by this vulnerability is an unknown function of the component Token Handler. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Admin Panel Stored cross site scripting

A vulnerability classified as problematic has been found in Magento up to 2.1.17/2.2.8/2.3.1. Affected is some unknown processing of the component Admin Panel. The manipulation with an unknown input leads to a cross site scripting vulnerability...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Admin Panel Attribute Stored cross site scripting

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been rated as problematic. This issue affects an unknown code block of the component Admin Panel. The manipulation as part of a Attribute leads to a cross site scripting...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Product denial of service

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been declared as problematic. This vulnerability affects an unknown code of the component Product Handler. The manipulation with an unknown input leads to a denial of service...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Server-Side Request Forgery

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been classified as critical. This affects an unknown part. The manipulation with an unknown input leads to a privilege escalation vulnerability (SSRF). CWE is classifying the...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Product Catalog Form Stored cross site scripting

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1 and classified as problematic. Affected by this issue is some unknown functionality of the component Product Catalog Form. The manipulation with an unknown input leads to a cross site...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 404 Page Cache denial of service

A vulnerability has been found in Magento up to 2.1.17/2.2.8/2.3.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component 404 Page. The manipulation with an unknown input leads to a denial of...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Server-Side Request Forgery

A vulnerability, which was classified as critical, was found in Magento up to 2.1.17/2.2.8/2.3.1. Affected is an unknown function. The manipulation with an unknown input leads to a privilege escalation vulnerability (SSRF). CWE is classifying...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 File Extension Filter File Upload privilege escalation

A vulnerability, which was classified as critical, has been found in Magento up to 2.1.17/2.2.8/2.3.1. This issue affects some unknown processing of the component File Extension Filter. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB

Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 Admin Panel Server-Side Request Forgery

A vulnerability classified as critical was found in Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1. This vulnerability affects an unknown code block of the component Admin Panel. The manipulation with an unknown input leads to a privilege escalation...
Auteur: VulDB

Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1 Admin Panel Stored cross site scripting

A vulnerability classified as problematic has been found in Magento up to 1.9.4.1/2.1.17/2.2.8/2.3.1. This affects an unknown code of the component Admin Panel. The manipulation with an unknown input leads to a cross site scripting vulnerability...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Admin Panel Stored cross site scripting

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been rated as problematic. Affected by this issue is an unknown part of the component Admin Panel. The manipulation with an unknown input leads to a cross site scripting...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Access Control Config privilege escalation

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been declared as critical. Affected by this vulnerability is some unknown functionality of the component Access Control. The manipulation with an unknown input leads to a...
Auteur: VulDB

Magento up to 2.1.17/2.2.8/2.3.1 Email Template Code Execution

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been classified as critical. Affected is an unknown functionality of the component Email Template Handler. The manipulation with an unknown input leads to a privilege...
Auteur: VulDB
First627628629630631632633634635636Last

Événements SSI