Magento Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2019-7947
Reference:
CVE-2019-7947
Title:
Magento Cross-Site Request Forgery (CSRF) Vulnerability
Overview:
A cross-site request forgery vulnerability exists in the GiftCardAccount removal feature for Magento Open Source prior to 1.9.4.2 and Magento Commerce prior to 1.14.4.2 Magento 2.1 prior to 2.1.18 Magento 2.2 prior to 2.2.9 Magento 2.3 prior to 2.3.2.