Category: Privilege Escalation

APPSEC-1909: Admin account takeover via File upload information disclosure

Description: It is discovered that Magento reveals HTTPOnly admin session cookie in the response of successful file upload in admin. Because the response content type is JSON, it is possible that attacker can steal admin session cookie by exploiting any

Posted in Authentication Bypass, Magento 2, Magento Commerce, Magento Open Source, Privilege Escalation