[MEDIUM] Magento Open Source Cross-Site Request Forgery (CSRF) vulnerability

PKSA-8qcx-d884-ntny CVE-2024-39409 GHSA-rf4q-m23c-7q8r

Affected package: magento/community-edition

Affected version: =2.4.4|<2.4.4-p10|=2.4.5|>=2.4.5-p1,<2.4.5-p9|=2.4.6|>=2.4.6-p1,<2.4.6-p7|=2.4.7|>=2.4.7-p1,<2.4.7-p2

Reported by:
GitHub