Filter
-Infinity
0
Trending
Magento Long Term SupportMagento vulnerable to stored XSS in theme config fields
2.9
EPSS
0.13%
First published (updated )
The RegisterWacom says crooks probably swiped customer credit cards from its online checkout
First published (updated )
News
The RegisterBleepingComputerMagnet Goblin hackers use 1-day flaws to drop custom Linux malware
First published (updated )
News
BleepingComputerCentOS LibgccMagento Commerce Media Gallery Upload Improper Access Control Could Lead To Remote Code Execution
7.2
First published (updated )
CentOS LibgccMagento Commerce CMS Page Improper Input Validation Could Lead To Remote Code Execution
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CentOS LibgccMagento Commerce Widgets Update Layout XML Injection Vulnerability Could Lead To Remote Code Execution
9.1
First published (updated )
Adobe Magento Commerce[CVE-2021-36032] Magento IDOR Leads to Account Takeover
8.8
First published (updated )
Adobe Magento CommerceAdobe Commerce Improper Access Control Security feature bypass
5.3
First published (updated )
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
6.1
First published (updated )
Adobe Magento CommerceAdobe Commerce XML Injection Arbitrary code execution
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Adobe Magento CommerceAdobe Commerce Improper Access Control Privilege escalation
8.8
First published (updated )
Adobe Magento CommerceAdobe Commerce Improper Limitation of a Pathname to a Restricted Directory Arbitrary code execution
8.8
First published (updated )
Adobe Magento CommerceAdobe Commerce Improper Authorization Privilege escalation
9.8
First published (updated )
Adobe Magento CommerceAdobe Commerce Stored XSS Arbitrary code execution
5.5
First published (updated )
Adobe Magento CommerceAdobe Commerce checkout improper input validation leads to remote code execution
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/magento/community-editionMagento Commerce improper authorization allows an authenticated user to perform certain functions without permission
6.5
First published (updated )
composer/magento/community-editionMagento Commerce information disclosure during upload action leveraging a specially crafted file
First published (updated )
CentOS LibgccMagento Commerce improper input validation in customer customer webapi
5.3
First published (updated )
CentOS LibgccMagento Commerce insecure storage of sensitive documentation
7.5
First published (updated )
CentOS LibgccMagento Commerce improper Authorization via the 'Create Customer' endpoint
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CentOS LibgccMagento Commerce DOM-based cross-site scripting (XSS) could lead to arbitrary javascript execution
6.9
First published (updated )
CentOS LibgccMagento Commerce path traversal vulnerability in child theme store creation
7.2
First published (updated )
Magento UpwardMagento UPWARD-php Path traversal vulnerability via UPWARD Connector
4.9
First published (updated )
CentOS LibgccMagento Commerce Arbitrary Folder Empty Could Lead To Arbitrary Code Execution
9.1
First published (updated )
CentOS LibgccMagento Commerce Unauthorized Data Modification Could Lead to Arbitrary Code Execution
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CentOS LibgccMagnto Commerce Unauthorized Data Modification Could Lead To Arbitrary Code Execution
9.1
First published (updated )
CentOS LibgccMagento Commerce Failure To Invalidate User Session Could Lead To Unauthorized Access
7.5
First published (updated )
CentOS LibgccMagento Commerce XML Injection Could Lead To Arbitrary Code Execution
9.1
First published (updated )
CentOS LibgccMagento Commerce Reflected Cross-site Scripting Vulnerability Could Lead To Arbitrary JavaScript Execution
4.8
First published (updated )
CentOS LibgccMagento Commerce Cross-Site Request Forgery (CSRF) Could Lead To Unauthorized Data Modification
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.