Security News > 2015 > August > Mildly Interesting Security Stuff: Magento Bug Bounty 1 2: CSRF to code execution and Post-auth RCE via object injection (Reddit)

Mildly Interesting Security Stuff: Magento Bug Bounty 1 2: CSRF to code execution and Post-auth RCE via object injection (Reddit)

2015-08-18 13:09

News URL

http://www.reddit.com/r/netsec/comments/3hfqsh/mildly_interesting_security_stuff_magento_bug/

#bounty #bugbounty #codeexecution #csrf #magento #RCE #reddit #security

Related news

WordPress security plugin WP Ghost vulnerable to remote code execution bug (source)
EncryptHub's dual life: Cybercriminal vs Windows bug-bounty researcher (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Magento		3	4	103	65	27	199

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.