Description
A cross-site request forgery vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can result in unintended deletion of the store design schedule.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress WP-Advanced-Search SQL Injection (3.3.6)
Internet Information Services Other Vulnerability (CVE-2001-0902)
WordPress Plugin WP-Ban Cross-Site Scripting (1.69)
Atlassian Jira Improper Authentication Vulnerability (CVE-2022-0540)
WordPress Plugin Images Lazyload and Slideshow Cross-Site Scripting (3.2)