Security News > 2015 > August > Mildly Interesting Security Stuff: Magento Bug Bounty 1 2: CSRF to code execution and Post-auth RCE via object injection (Reddit)

Mildly Interesting Security Stuff: Magento Bug Bounty 1 2: CSRF to code execution and Post-auth RCE via object injection (Reddit)

2015-08-18 13:09

News URL

http://www.reddit.com/r/netsec/comments/3hfqsh/mildly_interesting_security_stuff_magento_bug/

#bounty #bugbounty #codeexecution #csrf #magento #RCE #reddit #security

Related news

Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection (source)
Critical Cacti Security Flaw (CVE-2025-22604) Enables Remote Code Execution (source)
Microsoft raises rewards for Copilot AI bug bounty program (source)
Microsoft expands Copilot bug bounty targets, adds payouts for even moderate messes (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Magento		3	4	103	65	27	199

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.