Titre complet: Magento 2.4.6 XSLT Server Side Injection / Command Execution Vulnerability 
Catégorie: web applications
Plateforme: multiple
Magento version 2.4.6 suffers from an XSLT server side injection vulnerability that allows for remote command execution.

# 0day.today @ http://0day.today/