Security News > 2016 > January > Magento Update Addresses XSS, CSRF Vulnerabilities (Threatpost)

Magento Update Addresses XSS, CSRF Vulnerabilities (Threatpost)

2016-01-25 21:31

Magento patched 20 flaws last week, including a stored cross-site scripting (XSS) vulnerability that could have let an attacker take over a site.

News URL

http://threatpost.com/magento-update-addresses-xss-csrf-vulnerabilities/116015/

#csrf #magento #threatpost #vulnerabilities #XSS

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Magento		3	4	106	68	28	206

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.