dweeves/magmi Security Advisories (6)
-
[MEDIUM] Magmi XSS Vulnerability
PKSA-pvv5-5nrp-cchb CVE-2017-7391 GHSA-r8vh-cm9f-rc29
Affected version: <=0.7.22
Reported by:
GitHub -
[HIGH] MAGMI plugin for Magento Unsafe File Upload
PKSA-16v1-s19f-tpsy CVE-2014-8770 GHSA-x3gh-95p8-43qv
Affected version: <=0.7.17a
Reported by:
GitHub -
[MEDIUM] MAGMI cross-site scripting (XSS)
PKSA-hdsj-257r-g3p7 CVE-2015-2068 GHSA-27v2-398x-f74x
Affected version: <0.7.22
Reported by:
GitHub -
[MEDIUM] MAGMI plugin for Magento Server Directory Traversal
PKSA-p2f6-k57z-gnr1 CVE-2015-2067 GHSA-c252-xc8v-mqmm
Affected version: <=0.7.21
Reported by:
GitHub -
[MEDIUM] Cross-Site Request Forgery in MAGMI
PKSA-8v8q-dbk1-d6b1 CVE-2020-5776 GHSA-cv7m-wc7g-7gfp
Affected version: <=0.7.24
Reported by:
GitHub -
[CRITICAL] Authentication bypass in MAGMI
PKSA-x4q4-xm1x-vpcc CVE-2020-5777 GHSA-g475-pch5-6wvv
Affected version: <0.7.24
Reported by:
GitHub