CVE-2019-8228
CVE-2019-8228
in Magento prior to 1.9.4.3 and Magento prior to 1.14.4.3, an authenticated user with limited administrative privileges can inject arbitrary JavaScript code into transactional email page when creating a new email template or editing existing email template.
Productos afectados
Adobe Systems Incorporated · Magento 1¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →