Cheat sheets

CVE-2020-13404: Magento vulnerability

Share this with people that should know this:

The ATOS/Sips (aka Atos-Magento) community module 3.0.0 to 3.0.5 for Magento allows command injection.

References

  • github.com/quadra-informatique/Atos-Magento/releases
  • sysdream.com/news/lab/
  • sysdream.com/news/lab/2020-06-09-cve-2020-13404-remote-system-command-injection-in-atos-magento-module/
  • Share this with people that should know this: