Filter
-Infinity
0
Trending
Versions
2.4.4
103
2.4.5
103
2.4.6
103
2.4.4-p1
101
2.4.4-p2
101
2.4.4-p3
101
2.4.5-p1
101
2.4.5-p2
101
2.4.5-p3
89
2.4.5-p4
89
2.4.6-p1
89
2.4.6-p2
89
2.4.4-p4
80
2.4.4-p5
80
2.4.4-p6
80
2.4.4-p7
80
2.4.5-p5
80
2.4.5-p6
80
2.4.6-p3
80
2.4.6-p4
80
2.4.4-p8
78
2.4.5-p7
78
2.4.6-p5
78
2.4.7
73
2.4.4-p9
68
2.4.5-p8
68
2.4.6-p6
68
2.4.7-p1
68
2.4.7-b1
66
2.4.3
45
2.4.4-p10
45
2.4.5-p9
45
2.4.6-p7
45
2.4.7-p2
45
2.4.7-b2
25
2.4.4-p11
23
2.4.5-p10
23
2.4.6-p8
23
2.4.7-p3
23
2.4.8-beta1
23
2.4.1
3
1.0
2
1.1
2
1.2
2
1.3
2
1.4
2
1.5
2
1.6
2
1.7
2
1.8
2
Adobe Magento CommerceAdobe Commerce | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)
7.5
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Incorrect Authorization (CWE-863)
9.1
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Incorrect Authorization (CWE-863)
9.1
EPSS
0.05%
First published (updated )
Adobe Magento CommerceAdobe Commerce Incorrect Authorization Security feature bypass
7.5
First published (updated )
Adobe Magento CommerceAdobe Commerce Information Exposure Security feature bypass
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce | Incorrect Authorization (CWE-863)
4.3
First published (updated )
Adobe Magento CommerceAdobe Commerce XML Injection Security feature bypass
6.5
First published (updated )
Adobe Magento CommerceAdobe Commerce Guest Cart Shipping Address Overwrite IDOR
5.3
First published (updated )
Adobe Magento CommerceServer Side Request Forgery (SSRF) in USPS carrier integration configuration
4.9
First published (updated )
Adobe Magento CommerceServer Side Request Forgery (SSRF) in FedEx carrier integration configuration
4.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce | Improper Input Validation (CWE-20)
2.7
First published (updated )
Adobe Magento CommerceBypass Purchase Order Approval using Company User in Adobe Commerce B2B
4.3
First published (updated )
Adobe Magento CommerceInsecure Direct Object Reference (IDOR) in Create Quote Function
4.3
First published (updated )
Adobe Magento Commerce[Cloud] Customer suspects IDOR vulnerability
4.3
First published (updated )
Adobe Magento CommerceAdmin-to-admin stored XSS via cache poisoning
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)
8.7
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)
8.7
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Incorrect Authorization (CWE-863)
5.4
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Business Logic Errors (CWE-840)
5.3
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Improper Access Control (CWE-284)
8.1
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)
8.7
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)
8.7
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)
8.7
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)
8.7
EPSS
0.04%
First published (updated )
Adobe Magento CommerceAdobe Commerce | Information Exposure (CWE-200)
6.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento Commerce[Adobe Cloud] RCE through frontend gift registry sharing
First published (updated )
Adobe Magento CommerceAdobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79)
8.1
First published (updated )
Adobe Magento CommerceAdobe Commerce | Uncontrolled Resource Consumption (CWE-400)
5.3
First published (updated )
Adobe Magento CommerceAdobe Commerce | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89)
8
First published (updated )
Adobe Magento CommerceAdobe Commerce | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89)
8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.