Full title: Magento Product Attributes Cross Site Scripting Vulnerability Category: web applications Platform: php Magento suffers from product attribute information related cross site scripting vulnerabilities. Versions affected include Magento 2.0 prior to 2.0.18, Magento 2.1 prior to 2.1.12, and Magento 2.2 prior to 2.2.3. # 0day.today @ http://0day.today/