Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Magento Improper Authentication Vulnerability - CVE-2015-3457 - Vulnerability Database
Magento

Magento Improper Authentication Vulnerability - CVE-2015-3457

Medium
Reference: CVE-2015-3457
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-3457
Title: Magento Improper Authentication Vulnerability
Overview:

Magento Community Edition (CE) 1.9.1.0 and Enterprise Edition (EE) 1.14.1.0 allow remote attackers to bypass authentication via the forwarded parameter.