cross-site-scripting

Affected packages
2.1 <= magento < 2.1.12
2.2 <= magento < 2.2.3
2.0 <= magento < 2.0.18

Details

VuXML ID b6a5c2d0-238e-5a98-9246-882d08d7f5da
Discovery 1969-07-20
Entry 1980-01-01

Summary not available.

References

URL https://www.defensecode.com/advisories/DC-2018-03-004-Magento-Stored-XSS-Product-Attributes.pdf