Magento Commerce versions 2.4.2 (and previous versions), 2.4.2-p1 (and previous versions) and 2.3.7 (and previous versions) are affected by an improper input validation vulnerability during the checkout process. An unauthenticated attacker can leverage this vulnerability to alter the price of items.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe adobe commerce |
||
adobe adobe commerce 2.4.2 |
||
adobe magento open source |
||
adobe magento open source 2.4.2 |