Vulnerabilities > Magmi Project

DATE CVE VULNERABILITY TITLE RISK
2020-09-01 CVE-2020-5777 Improper Authentication vulnerability in Magmi Project Magmi
MAGMI versions prior to 0.7.24 are vulnerable to a remote authentication bypass due to allowing default credentials in the event there is a database connection failure.
network
low complexity
magmi-project CWE-287
critical
9.8
2020-09-01 CVE-2020-5776 Cross-Site Request Forgery (CSRF) vulnerability in Magmi Project Magmi
Currently, all versions of MAGMI are vulnerable to CSRF due to the lack of CSRF tokens.
network
low complexity
magmi-project CWE-352
8.8
2017-04-01 CVE-2017-7391 Cross-site Scripting vulnerability in Magmi Project Magmi 0.7.22
A Cross-Site Scripting (XSS) was discovered in 'Magmi 0.7.22'.
network
low complexity
magmi-project CWE-79
6.1