CVE-2020-9691
packagist/magento/community-edition
Cross-site Scripting
Magento has a DOM-based cross-site scripting vulnerability. Successful exploitation could lead to arbitrary code execution.
All versions before 2.3.5
Upgrade to version 2.3.5 or above.
2020-07-30
source |