Zero-Day Advisory
Fortinet Discovers Magento Cross-Site Scripting Vulnerability
Summary
Fortinet's FortiGuard Labs has discovered a Cross-Site Scripting (XSS) vulnerability in Magento.
Magento is an e-commerce platform written in PHP. It empowers thousands of retailers and brands with the best eCommerce platform and flexible cloud solutions to rapidly innovate and grow.
A XSS vulnerability has been discovered in Magento 2.0 prior to 2.0.18, Magento 2.1 prior to 2.1.12, Magento 2.2 prior to 2.2.3. It is caused by inadequate filtering of multi-byte characters which can lead to Denial-of-Service (DoS) in various components.
Solutions
FortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:Magento.Address.Field.XSS
Released Sep 28, 2017
FortiWeb can protect this specific vulnerability since the signature package 12.240.
Users should apply the solution provided by Magento.
Timeline
Fortinet reported the vulnerability to Magento on July 7, 2017.
Magento confirmed the vulnerability on September 27, 2017.
Magento patched the vulnerability on February 27, 2018.
Acknowledgement
This vulnerability was discovered by Zhouyuan Yang of Fortinet's FortiGuard Labs.