CVE List

CVE-2021-28585

Moderate 5.3

Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6-p1 (and earlier) are affected by an Improper input validation vulnerability in the New customer WebAPI.Successful exploitation could allow an attacker to send unsolicited spam e-mails.

Published June 28, 2021.

Affected software

Get alerts for Magento Magento

Reference links