Show filters
355 Total Results
Displaying 191-200 of 355
Sort by:
Attacker Value
Unknown
CVE-2020-9585
Disclosure Date: June 26, 2020 (last updated November 28, 2024)
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a defense-in-depth security mitigation vulnerability. Successful exploitation could lead to arbitrary code execution.
0
Attacker Value
Unknown
CVE-2020-9588
Disclosure Date: June 26, 2020 (last updated February 21, 2025)
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have an observable timing discrepancy vulnerability. Successful exploitation could lead to signature verification bypass.
0
Attacker Value
Unknown
CVE-2020-9577
Disclosure Date: June 26, 2020 (last updated February 21, 2025)
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure .
0
Attacker Value
Unknown
CVE-2020-9632
Disclosure Date: June 26, 2020 (last updated November 28, 2024)
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
0
Attacker Value
Unknown
CVE-2020-9579
Disclosure Date: June 26, 2020 (last updated November 28, 2024)
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
0
Attacker Value
Unknown
CVE-2020-9631
Disclosure Date: June 26, 2020 (last updated November 28, 2024)
Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
0
Attacker Value
Unknown
CVE-2012-6091
Disclosure Date: February 13, 2020 (last updated February 21, 2025)
Zend_XmlRpc Class in Magento before 1.7.0.2 contains an information disclosure vulnerability.
0
Attacker Value
Unknown
CVE-2020-3717
Disclosure Date: January 29, 2020 (last updated February 21, 2025)
Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a path traversal vulnerability. Successful exploitation could lead to sensitive information disclosure.
0
Attacker Value
Unknown
CVE-2020-3719
Disclosure Date: January 29, 2020 (last updated February 21, 2025)
Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have an sql injection vulnerability. Successful exploitation could lead to sensitive information disclosure.
0
Attacker Value
Unknown
CVE-2020-3715
Disclosure Date: January 29, 2020 (last updated February 21, 2025)
Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
0
