Filter
Versions
2.3.0
181
2.2.0
148
2.1.0
83
2.4.0
64
2.3.2
56
2.3.7
35
2.4.2
35
2.4.2-p1
27
2.3.6
21
2.4.1
20
2.3.4
18
2.4.0-p1
17
1.14.4.4
16
1.9.4.4
16
2.2.11
16
2.4.4
14
2.3.5
13
2.3.5-p1
11
2.3.7-p1
11
2.4.3
11
1.5.0.0
10
1.9.0.0
10
2.3.7-p2
10
2.4.3-p1
10
2.3.7-p3
8
2.4.3-p2
8
1.14.4.3
6
1.9.4.3
6
2.2.10
6
2.3.3
6
2.4.4-p1
6
2.4.5
6
1.14.1.0
5
1.9.1.0
5
2.4.4-p2
4
2.4.5-p1
4
2.3.6-p1
3
2.4.1-p1
3
1.14.4.5
2
1.9.4.5
2
1.0.0
1
1.14.0.0
1
1.14.2.1
1
1.14.2.2
1
1.2.0
1
1.2.1.1
1
1.5
1
1.6.2
1
1.9.0.1
1
1.9.2.1
1
1.9.2.2
1
2.0.5
1
2.4.2-p2
1
MagentoMagento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4…
10
First published (updated )
MagentoMagento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4…
10
First published (updated )
MagentoMagento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlie…
10
First published (updated )
MagentoMagento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlie…
10
First published (updated )
Adobe Magento CommerceAdobe Commerce checkout improper input validation leads to remote code execution
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
10
First published (updated )
MagentoPRODSECBUG-2447: Using JS libraries with known security vulnerabilities
9.8
First published (updated )
MagentoPRODSECBUG-2390: Broken authentication and session managememt
9.8
First published (updated )
MagentoPRODSECBUG-2416: Using vulnerable component that provides abstraction of HTTP specification
9.8
First published (updated )
MagentoPRODSECBUG-2272: XPath Injection via front end rendering functionality
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MagentoPRODSECBUG-2403: Remote code execution through crafted PageBuilder templates
9.8
First published (updated )
MagentoPRODSECBUG-2417: Remote code execution via vulnerable Symphony dependecy injection
9.8
First published (updated )
Adobe CommerceMagento Commerce XML Injection Vulnerability In The 'City' Field Could Lead To Remote Code Execution
9.8
First published (updated )
MagentoMagento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MagentoMagento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4…
9.8
First published (updated )
MagentoMagento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4…
9.8
First published (updated )
MagentoMagento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MagentoMagento CE and EE before 2.0.6 allows remote attackers to conduct PHP objection injection attacks an…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce Improper Authorization Privilege escalation
9.8
First published (updated )
MagentoMagento Commerce Widgets Update Layout XML Injection Vulnerability Could Lead To Remote Code Execution
9.1
First published (updated )
MagentoAdobe Commerce post-auth improper input validation leads to remote code execution
9.1
First published (updated )
Adobe CommerceMagento Commerce Improper Input Validation Could Lead To Remote Code Execution
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.