Security Advisory: Stored XSS in Magento

Security Risk: Dangerous Exploitation Level: Easy/Remote DREAD Score: 7/10 Vulnerability: Stored XSS Patched Version:  Magento CE: 1.9,2.3, Magento EE: 1.14.2.3 During our regular research audits for our Cloud-based WAF, we discovered a Stored XSS vulnerability affecting the Magento platform that can be easily exploited remotely. We notified the Magento team and worked with them to
Read More

The post Security Advisory: Stored XSS in Magento appeared first on Sucuri Blog.

Read more: Security Advisory: Stored XSS in Magento

Story added 22. January 2016, content source with full text you can find at link above.