CVE-2019-7890
CVE-2019-7890
An Insecure Direct Object Reference (IDOR) vulnerability exists in the order processing workflow of Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can lead to unauthorized access to order details.
Affected products
n/a · Magento 2Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →