Description
Magento versions 2.3.5-p1 and earlier, and 2.3.5-p1 and earlier have a dom-based cross-site scripting vulnerability. Successful exploitation could lead to arbitrary code execution.
Affected products
- Adobe / Magento2.3.5-p1 and earlier, and 2.3.5-p1 and earlier versions – 2.3.5-p1 and earlier, and 2.3.5-p1 and earlier versions