Category: Information Disclosure

PRODSECBUG-2197: Admin credentials are logged in exception reports

Description: Exception error reports capture administrative credentials in clear text format Type: Information Disclousure CVSSv3 Severity: 3.9 Known Attacks: none Product(s) Affected: Magento Open Source prior to, and Magento Commerce prior to, Magento 2.1 prior to 2.1.17, Magento

Posted in Information Disclosure, Magento 1, Magento 2, Magento Commerce, Magento Open Source