Full title: Magento 2.4.6 XSLT Server Side Injection / Command Execution Vulnerability 
Category: web applications
Platform: multiple
Magento version 2.4.6 suffers from an XSLT server side injection vulnerability that allows for remote command execution.

# 0day.today @ http://0day.today/