Identifier

CVE-2020-9691

Package Slug

packagist/magento/community-edition

Vulnerability

Cross-site Scripting

Description

Magento has a DOM-based cross-site scripting vulnerability. Successful exploitation could lead to arbitrary code execution.

Affected Versions

All versions before 2.3.5

Solution

Upgrade to version 2.3.5 or above.

Last Modified

2020-07-30

source