Full Disclosure

[KIS-2016-02] Magento <= 1.9.2.2 (RSS Feed) Information Disclosure Vulnerability

February 23, 2016 007admin Leave a comment

Posted by Egidio Romano on Feb 23

——————————————————————
Magento <= 1.9.2.2 (RSS Feed) Information Disclosure Vulnerability
——————————————————————

[-] Software Link:

http://magento.com/

[-] Affected Versions:

Version 1.9.2.2 and prior versions.

[-] Vulnerability Description:

The vulnerability is located in the /app/code/core/Mage/Rss/Helper/Order.php script,
specifically into the…

Leave a Reply Cancel reply

You must be logged in to post a comment.

Software and Security Information