Magento versions 2.4.1 (and previous versions), 2.4.0-p1 (and previous versions) and 2.3.6 (and previous versions) are vulnerable to an insecure direct object vulnerability (IDOR) in the checkout module. Successful exploitation could lead to sensitive information disclosure.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe magento commerce |
||
adobe magento commerce 2.4.0 |
||
adobe magento commerce 2.4.1 |
||
adobe magento open source |
||
adobe magento open source 2.4.0 |
||
adobe magento open source 2.4.1 |