Full title: FireBear Improved Import And Export 3.8.6 XSLT Server Side Injection Exploit 
Category: web applications
Platform: php
FireBear Improved Import and Export version 3.8.6 for Magento 2.4.6 suffers from an XSLT server-side injection vulnerability that allows for command execution.

# 0day.today @ http://0day.today/