CVE-2019-7881
CVE-2019-7881
A cross-site scripting mitigation bypass exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This could be exploited by an authenticated user to escalate privileges (admin vs. admin XSS attack).
Affected products
n/a · Magento 2Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →