12Kas
CVE-2024-49521 | Adobe Commerce up to 3.2.5 Requests server-side request forgery (apsb24-90)
A vulnerability has been found in Adobe Commerce up to 3.2.5 and classified as critical. This vulnerability affects unknown code of the component Requests Handler. The manipulation leads to server-side request forgery. This vulnerability was named CVE-2024-49521. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.