Lucene search
Zdt1337DAY-ID-36026HistoryMar 24, 2021 - 12:00 a.m.
Magento 2.4.0 / 2.3.5p1 (and earlier) Arbitrary Code Execution 0day Exploit
2021-03-2400:00:00
0day.today
732
0.001 Low
EPSS
Percentile
36.5%
Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an unsafe file upload vulnerability that could result in arbitrary code execution. This vulnerability could be abused by authenticated users with administrative permissions to the System/Data and Transfer/Import components.
Related
osv
osv
CVE-2020-24407
2020-11-09 01:15:12
Magento 2 Community Edition RCE via Unsafe File Upload
2022-05-24 17:33:56
BIT-magento-2020-24407
2024-03-06 11:07:21
cve
cve
CVE-2020-24407
2020-11-09 01:15:12
prion
prion
Remote code execution
2020-11-09 01:15:00
github
github
Magento 2 Community Edition RCE via Unsafe File Upload
2022-05-24 17:33:56
nvd
nvd
CVE-2020-24407
2020-11-09 01:15:12
cvelist
cvelist
CVE-2020-24407 Arbitrary code execution via file import functionality
2020-10-15 00:00:00
threatpost
threatpost
TikTok Riddled With Security Flaws
2020-01-08 14:30:42
Akamai Talks Massive Uptick in Credential-Stuffing Attacks Against Bank APIs
2020-03-12 13:57:20
Safari Bug Revealed After Apple Takes Nearly a Year to Patch
2020-08-25 15:28:20
openvas
openvas
Magento < 2.3.6, 2.4.x < 2.4.1 Multiple Vulnerabilities (APSB20-59)
2020-10-23 00:00:00
adobe
adobe
APSB20-59 Security updates available for Magento
2020-10-15 00:00:00