CVE-2024-20719 in Commerce情報

要約

〜によって MITRE • 2024年02月15日

Adobe Commerce versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an admin attacker to inject malicious scripts into every admin page. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field, that could be leveraged to gain admin access.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

モデレーション

承諾済み

エントリ

VDB-253711

EPSS

0.01307

アクティビティ

非常低い

ソース

Do you need the next level of professionalism?

Upgrade your account now!