CVE-2024-39409 | Adobe Commerce/Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1 cross-site request forgery (apsb24-61)

Posted by Angelo Barbosa | Aug 14, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Adobe Commerce and Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1. This affects an unknown part. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-39409. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39409 | Adobe Commerce/Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1 cross-site request forgery (apsb24-61)

Related Posts

CVE-2023-50072 | OpenKM 7.1.40 Note Upload cross site scripting

CVE-2024-35206 | Siemens SINEC Traffic Analyzer up to 1.1 session expiration (ssa-196737)

CVE-2024-27308 | mio Token use after free

CVE-2024-25410 | flusity CMS 2.33 update_setting.php unrestricted upload