CVE-2019-8230

Publication date

2019-11-05 23:57:36

Family

adobe

State

PUBLISHED

Description

In Magentoprior to 1.9.4.3, and Magento prior to 1.14.4.3, an authenticated user with administrative privileges to edit configuration settings can execute arbitrary code through a crafted support/output path.