CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Magmi Project: >> Magmi >> 0.7.24 Security Vulnerabilities

CVE-2020-5776

Currently, all versions of MAGMI are vulnerable to CSRF due to the lack of CSRF tokens. RCE (via phpcli command) is possible in the event that a CSRF is leveraged against an existing admin session for MAGMI.

CVSS Score

8.8

EPSS Score

0.752

Published

2020-09-01

Page 1

Vulnerabilities

Vulnerable Software

Magmi Project: >> Magmi >> 0.7.24 Security Vulnerabilities

Products

Pricing

Contact Us