← volver
CVE-2019-7139

CVE-2019-7139

EPSS 17.4%
An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.
Productos afectados
Magento · MagentoMagento · Magento CommerceMagento · Magento Open Source

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-13https://www.ambionics.io/blog/magento-sqli