Description
Magento versions 1.14.4.5 and earlier, and 1.9.4.5 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.
Remediation
References
Related Vulnerabilities
WordPress Plugin Media.net Ads Manager Arbitrary File Upload (2.10.13)
Oracle Database Server CVE-2011-3525 Vulnerability (CVE-2011-3525)
Oracle Database Server CVE-2006-5339 Vulnerability (CVE-2006-5339)
Oracle Database Server CVE-2014-4292 Vulnerability (CVE-2014-4292)
PostgreSQL Improper Certificate Validation Vulnerability (CVE-2021-43766)