FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

magento -- multiple vulnerabilities

Affected packages
magento < 1.9.2.1

Details

VuXML ID ea1d2530-72ce-11e5-a2a1-002590263bf5
Discovery 2014-10-03
Entry 2015-10-14

Magento, Inc. reports:

SUPEE-6482 - This patch addresses two issues related to APIs and two cross-site scripting risks.

SUPEE-6285 - This patch provides protection against several types of security-related issues, including information leaks, request forgeries, and cross-site scripting.

SUPEE-5994 - This patch addresses multiple security vulnerabilities in Magento Community Edition software, including issues that can put customer information at risk.

SUPEE-5344 - Addresses a potential remote code execution exploit.

SUPEE-1533 - Addresses two potential remote code execution exploits.

References

FreeBSD PR ports/201709
URL http://merch.docs.magento.com/ce/user_guide/Magento_Community_Edition_User_Guide.html#magento/release-notes-ce-1.9.2.1.html
URL http://merch.docs.magento.com/ce/user_guide/Magento_Community_Edition_User_Guide.html#magento/release-notes-ce-1.9.2.html
URL https://www.magentocommerce.com/download