Tag

Magento

1 brief RSS

Adobe Commerce XXE Vulnerability (CVE-2024-34102) Exploit Released

A public exploit, named CosmicSting, has been released for CVE-2024-34102, an XML External Entity (XXE) Injection vulnerability in Adobe Commerce allowing for unauthenticated remote file read, SSRF, and potential RCE.

Commerce cve-2024-34102 xxe adobe commerce magento

2r 1t 1c 1i 1h ago