adhammedhat111

1 exploit Active since Apr 2019
CVE-2019-7139 NOMISEC CRITICAL WORKING POC
Magento <2.1.18-2.3.2 - SQL Injection
An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.
6 stars
CVSS 9.8