Posted on

Magento up to 2.1.17/2.2.8/2.3.1 RSS Feed information disclosure

A vulnerability was found in Magento up to 2.1.17/2.2.8/2.3.1 and classified as problematic. Affected by this issue is an unknown functionality of the component RSS Feed Handler. Upgrading to version 2.1.18, 2.2.9 or 2.3.2 eliminates this vulnerability.