CVE-2020-15151: Information Exposure Through Discrepancy
(updated )
Magento allows attackers to circumvent the fromkey protection
in the Admin Interface and increases the attack surface for Cross Site Request Forgery attacks.
References
Detect and mitigate CVE-2020-15151 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →