Description

Magento 2.3 reached its end-of-life on September 8, 2022. If you are running Magento 2.3 or earlier versions, it's strongly recommend to migrate to the latest Magento version

Remediation

It's recommended to migrate to the latest Magento version.

References

Released versions

Related Vulnerabilities

PHP Improper Input Validation Vulnerability (CVE-2011-1470)

WordPress Plugin Breeze-WordPress Cache Open Redirect (1.0.10)

MySQL CVE-2019-2691 Vulnerability (CVE-2019-2691)

WordPress Plugin NextScripts:Social Networks Auto-Poster Cross-Site Request Forgery (4.3.24)

WordPress Plugin Royal Gallery 'upload.php' Arbitrary File Upload (2.1)

Severity

Info

Classification

CWE-1104 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:N CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update