Category: Information Disclosure

PRODSECBUG-2197: Admin credentials are logged in exception reports

Description: Exception error reports capture administrative credentials in clear text format Type: Information Disclousure CVSSv3 Severity: 3.9 Known Attacks: none Product(s) Affected: Magento Open Source prior to 1.9.4.1, and Magento Commerce prior to 1.14.4.1, Magento 2.1 prior to 2.1.17, Magento

Posted in Information Disclosure, Magento 1, Magento 2, Magento Commerce, Magento Open Source