Category: Stored XSS

PRODSECBUG-2184: Stored cross-site scripting in the admin panel via the Terms & Conditions with Checkbox Text field in the admin panel.

Description: An authenticated user with administrative privileges can embed arbitrary code via a stored cross site scripting vulnerability in the Terms & Conditions with Checkbox Text field in the admin panel. Type: General: Cross Site Scripting CVSSv3 Severity: 5.7 Known

Posted in Magento 2, Magento Commerce, Magento Open Source, Stored XSS

PRODSECBUG-2178: Stored cross-site scripting in the admin panel via the Admin Shopping Cart Rules page

Type: General: Cross Site Scripting CVSSv3 Severity: 5.8 Known Attacks: none Description: An authenticated user with administrative privileges can embed arbitrary code in the Conditions tab of Admin Shopping Cart Rules page. Product(s) Affected: Magento Open Source prior to 1.9.4.1,

Posted in Magento 1, Magento 2, Magento Commerce, Magento Open Source, Stored XSS

PRODSECBUG-2181: Stored cross-site scripting in the Admin Customer Segments area

Description: An authenticated user with privileges to the Customer Segments section of the Admin can use a stored cross site scripting vulnerability to embed malicious code. Type: General: Cross Site Scripting CVSSv3 Severity: 6.5 Known Attacks: none Product(s) Affected: Magento

Posted in Magento 2, Magento Commerce, Magento Open Source, Stored XSS

PRODSECBUG-2146: Remote Code Execution through the Product Media Upload in the Admin

Description: A path traversal vulnerability permits folder creation at arbitrary locations and file deletion from arbitrary locations in the Admin product image/media upload area. Type: Cross-Site Scripting (XSS) CVSSv3 Severity: 6.0 Product(s) Affected: Magento 2.1 prior to 2.1.16, Magento 2.2

Posted in Magento 2, Magento Commerce, Magento Open Source, RCE, Stored XSS

APPSEC-2094: Stored XSS – Website to Admin in Global Search

Description: A stored XSS vulnerability from website user targeting admin accounts has been discovered in all the Magento 2.x versions. It’s really easy for an attacker to exploit this. Type: General: Cross Site Scripting (stored) CVSSv3 Severity: 9.6 Product(s) Affected:

Posted in Magento 2, Magento Commerce, Magento Open Source, Stored XSS Tagged with:

APPSEC-1878/1890: Cross-site Scripting in CMS hierarchy

Description: An administrator with limited privileges can insert script into the CMS hierarchy, which could potentially result in a stored cross-site scripting that affects other administrators. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento Open

Posted in Magento 1, Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1973: Cross-site Scripting in Newsletter Template

Description: An administrator with limited privileges can embed cross-site scripting elements in the Newsletter template, which could potentially lead to a stored cross-site scripting attack. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento Open Source

Posted in Magento 1, Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1947: Cross-site Scripting in RMA functionality

Description: A user can insert script in the RMA SKU field, which could potentially result in a stored cross-site scripting attack. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento 2.0 prior to 2.0.18, Magento 2.1

Posted in Magento 2, Magento Commerce, Stored XSS

APPSEC-1945: Cross-site Scripting in Product SKU

Description: An administrator with limited privileges can insert script in the RMA SKU field, which could potentially result in a stored cross-site scripting attack. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento Open Source prior

Posted in Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1944: Cross-site Scripting in Date fields

Description: An administrator with limited privileges can insert script into the private sales events and invitations fields, which can subsequently lead to a stored cross-site scripting attack. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento

Posted in Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1928: Cross-site Scripting in Downloadable Product Link

Description: An administrator with limited privileges can insert script in the downloadable product link title field, which could subsequently lead to a stored cross-site scripting attack. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento Open

Posted in Magento 1, Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1916: Cross-site Scripting in Attribute Group Name

Description: An administrator with limited privileges can insert script in the attribute group name field, which could potentially result in stored cross-site scripting that affects other administrators. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento

Posted in Magento 1, Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1908/1948: Cross-site Scripting in custom variable

Description: An administrator with limited privileges can insert script in the custom variables name field, which could potentially result in stored cross-site scripting that affects other administrators. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento

Posted in Magento 1, Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1891: Cross-site Scripting in Admin Shipment tracking

Description: An administrator with limited privileges can insert script into the shipment tracking, which could potentially result in stored cross-site scripting that affects other administrators. Type: Cross-site Scripting (XSS) – stored CVSSv3 Severity: 5.0 (Medium) Product(s) Affected: Magento 2.0 prior

Posted in Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1907: Cross-site Scripting in Customer Address

Description: A user can insert script into his or her address, which could potentially result in stored cross-site scripting that affects administrators. Type: Cross-site Scripting (XSS) CVSSv3 Severity: 7.5 (High) Product(s) Affected: Magento 2.0 prior to 2.0.18, Magento 2.1 prior

Posted in Magento 2, Magento Commerce, Magento Open Source, Stored XSS

APPSEC-1892: Stored XSS in Visual Merchandiser

Description: An administrator with limited privileges can create a stored-cross site scripting attack in the Visual Merchaniser system. Type: Cross-Site Scripting (XSS, stored) CVSSv3 Severity: 6.1 (Medium) Product(s) Affected: Magento Open Source prior to 1.9.3.7, and Magento Commerce prior to

Posted in Magento 1, Magento Commerce, Magento Open Source, Stored XSS