CVE-2021-36030

Published: 2021-09-01T15:15Z

Last Modified: 2024-11-21T06:12Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability during the checkout process. An unauthenticated attacker can leverage this vulnerability to alter the price of items. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt