Published: 14/10/2022 Updated: 19/10/2022

CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3

VMScore: 0

Adobe Commerce versions 2.4.4-p1 (and previous versions) and 2.4.5 (and previous versions) are affected by a Stored Cross-site Scripting vulnerability. Exploitation of this issue does not require user interaction and could result in a post-authentication arbitrary code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
adobe commerce 2.4.4
adobe magento open source
adobe magento open source 2.4.5
adobe magento open source 2.4.4
adobe commerce 2.4.5
adobe commerce

This repository contains potential security patches for the Magento APSB22-48 and CVE-2022-35698 security vulnerability

Official Magento Patches have been released: Magento Docs These patches address the same security issues as this repository does Except that we've added a few fixes to older Magento versions Security patches for APSB22-48 This repository contains Magento 2 Patch Files for the recently found security issues on 12-10-2022 The patch files aim to fix the CVE-2022-35698 and

GitHub README introduce page

Hi there 👋 Hey everyone! I'm Tu, the Magento Tech Guru at Macademy and a Magento and Adobe Commerce Certified Expert Developer I discovered my passion for website development when I was 16 years old and have been dedicated to it ever since I have honed my skills to become a leading expert in the platform Consequently, I had the privilege to collaborate with industr

CWE-79 https://helpx.adobe.com/security/products/magento/apsb22-48.html https://nvd.nist.gov https://github.com/EmicoEcommerce/Magento-APSB22-48-Security-Patches

CVE-2022-35698

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect