saleor Saleor Vulnerabilities

Saleor Saleor vulnerabilities.

JSON RSS CSV 🔔 Create Alert Trigger

23 January 2026

Insecure Direct Object Reference in Saleor E-Commerce Platform
CVE-2026-24136
SaleorSaleor8.7HIGH

21 January 2026

File Upload Vulnerability in Saleor E-commerce Platform
CVE-2026-23499
SaleorSaleor8.5HIGH
Stored XSS Vulnerability in Saleor E-commerce Platform
CVE-2026-22849
SaleorSaleor7.2HIGH

9 September 2025

Information Disclosure in Saleor E-commerce Platform
CVE-2025-58442
SaleorSaleor5.3MEDIUM

8 April 2024

Empty String Bypass of Cross-Site Request Forgery (CSRF) Validation in Saleor Versions 3.10.0 to 3.19.19
CVE-2024-31205
SaleorSaleor4.2MEDIUM

25 May 2023

Non-constant time HMAC comparison in Adyen plugin in Saleor
CVE-2023-32694
SaleorSaleor4.8MEDIUM

2 March 2023

6 October 2022

Improper object type validation in saleor
CVE-2022-39275
SaleorSaleor👾🟡5.3MEDIUM

15 July 2019

Incorrect Access Control in Saleor's GraphQL API
CVE-2019-1010304
SaleorSaleor5.3MEDIUM