Published on August 4th, 2019 📆 | 4203 Views ⚑0
Magento up to 2.1.17/2.2.8/2.3.1 Email Template information disclosure
|CVSS Meta Temp Score||Current Exploit Price (≈)|
A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1. It has been classified as problematic. This affects some unknown processing of the component Email Template Handler. The manipulation with an unknown input leads to a information disclosure vulnerability. CWE is classifying the issue as CWE-200. This is going to have an impact on confidentiality.
The weakness was published 08/02/2019. The advisory is shared at magento.com. This vulnerability is uniquely identified as CVE-2019-7888 since 02/12/2019. Neither technical details nor an exploit are publicly available.
Upgrading to version 2.1.18, 2.2.9 or 2.3.2 eliminates this vulnerability.
VulDB Meta Base Score: 3.5
VulDB Meta Temp Score: 3.4
Status: Not defined
Price Prediction: 🔍
Current Price Estimation: 🔒
0-Day unlock unlock unlock unlock Today unlock unlock unlock unlock
0-Day Time: 🔒
Upgrade: Magento 2.1.18/2.2.9/2.3.2
Created: 08/04/2019 07:39 AM
See the underground prices here!