Filter
AND
Versions
2.3.0
91
2.2.0
80
2.1.0
51
2.3.2
31
2.4.0
25
2.4.2
12
2.3.7
10
2.3.6
8
2.4.1
8
2.3.5
7
2.3.5-p1
7
2.4.0-p1
7
2.4.2-p1
7
2.4.4
7
1.14.1.0
5
1.9.1.0
5
2.3.4
5
1.5.0.0
4
1.9.0.0
4
2.3.7-p1
4
2.4.3
4
2.4.4-p1
4
2.4.5
4
1.14.4.3
3
1.14.4.4
3
1.9.4.3
3
1.9.4.4
3
2.2.10
3
2.2.11
3
2.3.3
3
2.3.7-p2
3
2.3.7-p3
3
2.4.3-p1
3
2.4.3-p2
3
2.4.4-p2
3
2.4.5-p1
3
1.14.2.2
1
1.14.4.5
1
1.2.0
1
1.2.1.1
1
1.5
1
1.6.2
1
1.9.0.1
1
1.9.2.2
1
1.9.4.5
1
2.3.6-p1
1
2.4.1-p1
1
2.4.2-p2
1
Adobe Magento CommerceAdobe Commerce Improper Access Control Security feature bypass
5.3
First published (updated )
MagentoMagento Commerce Cross-Site Request Forgery (CSRF) Could Lead To Unauthorized Data Modification
4.3
First published (updated )
Adobe CommerceMagento Commerce Improper Authorization Vulnerability Could Lead To Information Exposure
6.5
First published (updated )
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
6.1
First published (updated )
MagentoStored XSS in customer address upload feature
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/magento/community-editionMagento Commerce improper authorization allows an authenticated user to perform certain functions without permission
6.5
First published (updated )
Adobe CommerceMagento Commerce Gift Card Business Logic Error
6.5
First published (updated )
MagentoMagento Commerce DOM-based cross-site scripting (XSS) could lead to arbitrary javascript execution
6.9
First published (updated )
MagentoMagento Commerce Improper Access Control Vulnerability
5.3
First published (updated )
Adobe Magento CommerceAdobe Commerce Improper Access Control Security feature bypass
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MagentoMagento Commerce Reflected Cross-site Scripting Vulnerability Could Lead To Arbitrary JavaScript Execution
4.8
First published (updated )
Adobe CommerceMagento Commerce Stored Cross-site Scripting Vulnerability
6.5
First published (updated )
MagentoIncorrect permissions in Inventory module could lead to unauthorized modification of inventory stock data
4.3
First published (updated )
MagentoMagento Commerce improper Authorization via the 'Create Customer' endpoint
6.5
First published (updated )
MagentoIncorrect permissions in the Integrations component could lead to unauthorized deletion of customer details via REST API
5.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MagentoMagento Commerce Incorrect permissions Could Lead To Unauthorized Access
5.3
First published (updated )
Adobe Magento CommerceMagento Commerce Insecure Direct Object Reference Vulnerability Could Lead To Sensitive Information Disclosure
5.3
First published (updated )
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
5.5
First published (updated )
MagentoMagento Commerce improper input validation in customer customer webapi
5.3
First published (updated )
composer/magento/community-editionMagento Commerce information disclosure during upload action leveraging a specially crafted file
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MagentoThe fetchView function in the Mage_Core_Block_Template_Zend class in Magento Community Edition (CE) …
6.5
First published (updated )
MagentoMagento Community Edition (CE) 1.9.1.0 and Enterprise Edition (EE) 1.14.1.0 allow remote attackers t…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MagentoAn insecure direct object reference (IDOR) vulnerability exists in Magento 2.3 prior to 2.3.1, 2.2 p…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.