Category: Authentication Bypass

APPSEC-1909: Admin account takeover via File upload information disclosure

Description: It is discovered that Magento reveals HTTPOnly admin session cookie in the response of successful file upload in admin. Because the response content type is JSON, it is possible that attacker can steal admin session cookie by exploiting any

Posted in Authentication Bypass, Magento 2, Magento Commerce, Magento Open Source, Privilege Escalation

Magento Security Scan Tool authentication bypass vulnerability

Vulnerability: Magento released “Magento Security Tool” in October, where merchants can verify their website on magento.com and run the tool to audit their website. Attacker can verify any website by passing the verification code in the search URL. Note that

Posted in Authentication Bypass