Sunday, 14 February 2016

Magento : CSRF to code execution and Post-auth RCE via object injection worth $11500

clickjacking command injection CSRF Magento more RCE remote code execution XSS Published on 23:33 By: Information Security In:clickjacking, command injection, CSRF, Magento, more, RCE, remote code execution, XSS

http://ebrietas0.blogspot.com - disclosed vulnerability in 'Magento'.

Domain: 'Magento'

Bug Type : CSRF, RCE

Researcher : Ebrietas

Share

& Comment

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Copyright © 2015 XSSes | Bug Bounty Program | POC Collection DB | Web Application Security™ is a registered trademark.

Designed by Templateism. Hosted on Blogger Platform.