CVE-2019-8140
CVE-2019-8140
An unrestricted file upload vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated admin user can manipulate the Synchronization feature in the Media File Storage of the database to transform uploaded JPEG file into a PHP file.
Produtos afetados
Adobe Systems Incorporated · Magento 2Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →