|
Description
|
|
(:Several vulnerabilities have been identified in Magento.::- persistent cross-site scripting. An authenticated remote attacker can exploit it to execute arbitrary JavaScript code or HTML by enticing their victim to follow a specially crafted link.:This vulnerability is located in the "firstname" and "lastname" parameters of the /bug-tracking/.::- several cross-site request forgery vulnerabilities. An authenticated remote attacker could perform certain operations with the privileges of their victim by inciting them into opening a malicious link.:These vulnerabilities are located in the POST form in the "/ce/user_guide/" and "/products/bug-tracking/report/saveIssue/" modules.::Several proof-of-concept codes are available.)
|
|
|
|
|
|
Vulnerable Products
|
|
Vulnerable Software:
Magento (MAGENTO) -
|
|
|
|
|
|
Solution
|
|
Magento a publié un correctif pour ces vulnérabilités.
|
|
|
|
|
|
CVE
|
|
|
|
|
|
|
|
References
|
|
- OSS-Sec : Magento Bug Bounty #24 - Multiple CSRF Web Vulnerabilities
http://seclists.org/fulldisclosure/2015/Nov/74
- OSS-Sec : Magento Bug Bounty #22 (Profile) Persistent Vulnerability
http://seclists.org/fulldisclosure/2015/Nov/73
|
|
|
|
|
|
Vulnerability Manager Detection
|
|
No
|
|
|
|
|
|
IPS Protection
|
|
|
|
|
|
|
