Filter
Versions
2.3.0
181
2.2.0
148
2.1.0
83
2.4.0
64
2.3.2
56
2.3.7
35
2.4.2
35
2.4.2-p1
27
2.3.6
21
2.4.1
20
2.3.4
18
2.4.0-p1
17
1.14.4.4
16
1.9.4.4
16
2.2.11
16
2.4.4
14
2.3.5
13
2.3.5-p1
11
2.3.7-p1
11
2.4.3
11
1.5.0.0
10
1.9.0.0
10
2.3.7-p2
10
2.4.3-p1
10
2.3.7-p3
8
2.4.3-p2
8
1.14.4.3
6
1.9.4.3
6
2.2.10
6
2.3.3
6
2.4.4-p1
6
2.4.5
6
1.14.1.0
5
1.9.1.0
5
2.4.4-p2
4
2.4.5-p1
4
2.3.6-p1
3
2.4.1-p1
3
1.14.4.5
2
1.9.4.5
2
1.0.0
1
1.14.0.0
1
1.14.2.1
1
1.14.2.2
1
1.2.0
1
1.2.1.1
1
1.5
1
1.6.2
1
1.9.0.1
1
1.9.2.1
1
1.9.2.2
1
2.0.5
1
2.4.2-p2
1
BleepingComputerMagnet Goblin hackers use 1-day flaws to drop custom Linux malware
First published (updated )
News
BleepingComputerMagentoAdobe Commerce post-auth improper input validation leads to remote code execution
9.1
First published (updated )
MagentoMagento Commerce Media Gallery Upload Improper Access Control Could Lead To Remote Code Execution
7.2
First published (updated )
MagentoMagento Commerce CMS Page Improper Input Validation Could Lead To Remote Code Execution
7.2
First published (updated )
MagentoMagento Commerce Widgets Update Layout XML Injection Vulnerability Could Lead To Remote Code Execution
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce Improper Access Control Security feature bypass
5.3
First published (updated )
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
4.8
First published (updated )
Adobe Magento CommerceAdobe Commerce XML Injection Arbitrary file system read
7.5
First published (updated )
Adobe Magento CommerceAdobe Commerce Incorrect Authorization Security feature bypass
4.3
First published (updated )
Adobe Magento Commerce[CVE-2021-36032] Magento IDOR Leads to Account Takeover
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce Improper Access Control Security feature bypass
5.3
First published (updated )
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
10
First published (updated )
Adobe Magento CommerceAdobe Commerce Improper Access Control Security feature bypass
5.3
First published (updated )
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
6.1
First published (updated )
Adobe Magento CommerceAdobe Commerce XML Injection Arbitrary code execution
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce Improper Access Control Privilege escalation
8.8
First published (updated )
Adobe Magento CommerceAdobe Commerce Improper Limitation of a Pathname to a Restricted Directory Arbitrary code execution
8.8
First published (updated )
Adobe Magento CommerceAdobe Commerce Improper Authorization Privilege escalation
9.8
First published (updated )
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
5.5
First published (updated )
Adobe Magento CommerceAdobe Commerce checkout improper input validation leads to remote code execution
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce Cross-Site Request Forgery (CSRF) Could Lead To Unauthorized Cart Addition
6.5
First published (updated )
composer/magento/community-editionMagento Commerce improper authorization allows an authenticated user to perform certain functions without permission
6.5
First published (updated )
composer/magento/community-editionMagento Commerce information disclosure during upload action leveraging a specially crafted file
First published (updated )
Adobe CommerceMagento Commerce GraphQL Improper Input Validation Could Lead To Denial Of Service
7.5
First published (updated )
Adobe CommerceMagento Commerce Stored Cross-site Scripting Vulnerability
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe CommerceMagento Commerce Authenticated Blind SSRF Could Lead To Remote Code Execution
8
First published (updated )
Adobe CommerceMagento Commerce API File Option Upload Extension Improper Input Validation Vulnerability Could Lead To Remote Code Execution
9.1
First published (updated )
Adobe CommerceMagento Commerce Improper Input Validation During Checkout Process Could Lead To Privilege Escalation
7.5
First published (updated )
Adobe CommerceMagento Commerce Improper Input Validation Could Lead To Remote Code Execution
9.1
First published (updated )
Adobe CommerceMagento Commerce Improper Input Validation Could Lead To Remote Code Execution
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.