Adobe Magento Commerce Vulnerabilities
Adobe Magento Commerce vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
SSRF Vulnerability in Adobe Commerce Affecting Earlier Versions
CVE-2024-49521AdobeCommerce7.7HIGHValidate Your Inputs | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)
CVE-2023-38208AdobeMagento Commerce7.2HIGHAdobe Commerce Incorrect Authorization Security feature bypass
CVE-2023-38209AdobeMagento Commerce6.5MEDIUMAdobe Commerce Guest Cart Shipping Address Overwrite IDOR
CVE-2023-29290AdobeMagento Commerce5.3MEDIUMServer Side Request Forgery (SSRF) in FedEx carrier integration configuration
CVE-2023-29292AdobeMagento Commerce4.9MEDIUMServer Side Request Forgery (SSRF) in USPS carrier integration configuration
CVE-2023-29291AdobeMagento Commerce4.9MEDIUMInsecure Direct Object Reference (IDOR) in Create Quote Function
CVE-2023-29295AdobeMagento Commerce4.3MEDIUMAdmin-to-admin stored XSS via cache poisoning
CVE-2023-29297AdobeMagento Commerce7.2HIGHAdobe Commerce Incorrect Authorization Security feature bypass
CVE-2023-22248AdobeMagento Commerce7.5HIGHAdobe Commerce Information Exposure Security feature bypass
CVE-2023-29287AdobeMagento Commerce5.3MEDIUMBypass Purchase Order Approval using Company User in Adobe Commerce B2B
CVE-2023-29294AdobeMagento Commerce4.3MEDIUM[Cloud] Customer suspects IDOR vulnerability
CVE-2023-29296AdobeMagento Commerce4.3MEDIUMAdobe Commerce XML Injection Security feature bypass
CVE-2023-29289AdobeMagento Commerce6.5MEDIUMAdobe Commerce Incorrect Authorization Security feature bypass
CVE-2023-22251AdobeMagento Commerce4.3MEDIUMAdobe Commerce Stored XSS Arbitrary code execution
CVE-2023-22249AdobeMagento Commerce4.8MEDIUMAdobe Commerce Improper Access Control Security feature bypass
CVE-2023-22250AdobeMagento Commerce5.3MEDIUMAdobe Commerce XML Injection Arbitrary file system read
CVE-2023-22247AdobeMagento Commerce7.5HIGHAdobe Commerce Improper Access Control Security feature bypass
CVE-2022-35689AdobeMagento Commerce5.3MEDIUMAdobe Commerce Stored XSS Arbitrary code execution
CVE-2022-35698AdobeMagento CommerceπΎπ‘10CRITICALAdobe Commerce Improper Access Control Security feature bypass
CVE-2022-35692AdobeMagento Commerce5.3MEDIUMAdobe Commerce Stored XSS Arbitrary code execution
CVE-2022-34258AdobeMagento Commerce4.8MEDIUMAdobe Commerce Stored XSS Arbitrary code execution
CVE-2022-34257AdobeMagento Commerce6.1MEDIUMAdobe Commerce Improper Access Control Security feature bypass
CVE-2022-34259AdobeMagento Commerce5.3MEDIUMAdobe Commerce Improper Limitation of a Pathname to a Restricted Directory Arbitrary code execution
CVE-2022-34254AdobeMagento Commerce8.5HIGHAdobe Commerce XML Injection Arbitrary code execution
CVE-2022-34253AdobeMagento Commerce9.1CRITICAL