Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist magento/community-edition Security Advisories

Loading...
Critical
GSA_kwCzR0hTQS1tOGNqLTN2NjgtM2N4as4AA9CN
Magento Open Source affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 1 month ago
Critical
GSA_kwCzR0hTQS04ajdjLTY4MngtcjlmMs4AA8I2
Magento RCE,XSS and other vulnerabilities
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS1tY2ZjLTY3dm0tajU2OM4AA8I1
Magento Cross-Site Scripting (XSS) vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Critical
GSA_kwCzR0hTQS01Z21oLTg1eDgtNWN4N84AA8I0
Magento remote code execution (RCE), Cross-Site Scripting (XSS) and other vulnerabilities
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Critical
GSA_kwCzR0hTQS1jdjI1LTNweHItNHE3eM4AA8Iz
Magento Open Source Security Advisory: Patch SUPEE-10975
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Critical
GSA_kwCzR0hTQS0yNmhxLTcyODYtbWc4Zs4AA8Iy
Magento Patch SUPEE-9652 - Remote Code Execution using mail vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Critical
GSA_kwCzR0hTQS02d200LTNyamotYzh4eM4AA8Ix
Magento Security enhancements that help close RCE,XSS,CSRF and other vulnerabilities
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
Critical
GSA_kwCzR0hTQS1wcnBmLWNqODctaHd2cs4AA8Iw
Magento Patch SUPEE-10752 - Multiple security enhancements vulnerabilities
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
High
GSA_kwCzR0hTQS0yOTdmLXI5dzctdzQ5Ms4AAve8
Magento Improper input validation vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: over 1 year ago
High
GSA_kwCzR0hTQS1meDlnLWc5cTYteDNqeM4AAuCO
Magento Path Traversal vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.2
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1yN21tLWdyZjMtNWZqds4AAuDW
Magento Improper Authorization vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1yZzdwLXdtZ2otZjM3NM4AAuCM
Magento stored Cross-Site Scripting (XSS) vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS01bTU1LWc4cHYteDh3d84AAuDG
Magento stored Cross-Site Scripting (XSS) vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.9
Published: almost 2 years ago
High
GSA_kwCzR0hTQS14OTV4LWY0ZzktbW04Nc4AAuDM
Magento Improper Access Control vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS05d2pmLTk0aDMtcjRyaM4AAuCN
Magento Improper Access Control vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS1jajd3LXBtNzctaHZnNs4AAuCK
Magento XML Injection vulnerability in the Widgets Module
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS04bXd4LXdwcDQtNXhoNM4AAq-O
Magento Broken authentication and session managememt
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS00djJxLWhqeDMtYzR2cs4AAq98
Magento remote code execution vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS00ajZ3LTlyZjgtaGc3cs4AAq5P
Magento 2 Community Edition SQLi Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Low
GSA_kwCzR0hTQS13OTQyLWZ3OTItbXFtMs4AApza
Magento Information Disclosure vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1jYzN3LXIzdzgtaGZoN84AApzl
Magento Improper Authorization vulnerability in the customers module
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.4
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1xOXh4LTQ2ODktZ3Z2Nc4AAo-B
Magento Unauthorized access to restricted resources
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS03Z2g2LWY0amgtM2Nycc4AAo-E
Magento Violation of Secure Design Principles vulnerability in RMA PDF filename formats
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0zOWNoLXJnMjYtZ21xNc4AAo-X
Magento DOM-based Cross-Site Scripting vulnerability on mage-messages cookies
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.4
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1jMzhtLTk2NjgtNmoyd84AAo-D
Magento Improper input validation vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS03Z3B2LXhyanItZjVoNM4AAo-L
Magento Path Traversal vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00aDNwLTYzeDYtdndnMs4AAnik
Magento Insufficient Session Expiration
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 6.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00amZxLWY4aGMtNzc1cc4AAnia
Magento Insufficient Session Expiration
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 6.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1oNHhjLTU3N3AtaGdqOc4AAniP
Magento cross-site request forgery (CSRF) vulnerability via the GraphQL API
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS02OTg4LWc4OW0tMjd2Zs4AAniS
Magento stored cross-site scripting (XSS) in the customer address upload feature
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1jcmpjLTJ2OW0tOHc3cs4AAniu
Magento improper authorization vulnerability in the integrations module
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1yajRmLWNwNHYtaHZjds4AAniQ
Magento Blind SQL Injection in the Search module
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1oNXJtLW03NzItNnFjeM4AAnie
Magento stored cross-site scripting vulnerability in the admin console
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04cGZxLWc0OHAteDd3OM4AAniY
Magento Insecure Direct Object Reference (IDOR) in the product module
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1qd3hoLXdqNzktY2NtNs4AAniV
Magento Reflected Cross-site Scripting vulnerability via 'file' parameter
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1tdzk1LWdtdzQtODgzcM4AAniW
Magento XML injection in the Widgets module
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1ydjQ4LXY4NjItbXA5Ms4AAni8
Magento OS Command Injection
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS0yNjl3LXBxYzctNjhxOc4AAniK
Magento vulnerable to a file upload restriction bypass
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1oNDM3LXFqajktdm1xNM4AAniO
Magento XPath Injection
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0yajZ2LTgyOWctODg1cc4AAniR
Magento Improper Access Control
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS03OTJmLWM4bXAtMmNyNc4AAnh_
Magento OS command injection via the WebAPI
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS13MnA0LTJjOGMtMmc3aM4AAniA
Magento OS command injection via the customer attribute save controller
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1wN203LWo4anYtMzkzcc4AAmmO
Magento incorrect permissions vulnerability in the Inventory module
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS03cHhnLTZwODctOGM5ds4AAmmL
Magento 2 Community Edition RCE via Unsafe File Upload
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1tcjhxLTdmNWotd2M3Oc4AAmnC
Magento information disclosure vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1wZjZ3LTNwZnctZnh2d84AAml-
Magento SQL Injection vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1yd2Y3LTY1MmYtNzZtds4AAml3
Magento 2 Community Edition vulnerable to Improper Authorization
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1odmY1LTRqcjktZmdoaM4AAmmI
Magento incorrect permissions vulnerability in the Integrations component
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: about 2 years ago
Low
GSA_kwCzR0hTQS0zOXJ3LTRtNjYtODJnZs4AAmmH
Magento incorrect user permissions vulnerability within the Inventory component
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1mMmczLTNjNnEtNDQ3OM4AAmmC
Magento 2 Community Edition Incorrect Authorization
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1qeGpjLTZ4bWgtaDdtZ84AAmQ0
Magento 2 Community Edition XSS Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1nN3BjLTc5OXEtNzQzZs4AAlf2
Magento DOM-based Cross-site scripting vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS14Z3A5LWo0OGgtampmOc4AAlfm
Magento observable timing discrepancy vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12cWc3LTh2NngtNTRycc4AAlf3
Magento security mitigation bypass vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1mcjZmLXhtZngtcnJwcc4AAlf1
Magento path traversal vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS01ajR3LXY4N20tOHI2Nc4AAlK_
Magento business logic error vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS02dzI5LXg1ajQtcWhyd84AAlK8
Magento security mitigation bypass vulnerability
Ecosystems: packagist
Packages: magento/community-edition, magento/core
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1nZmZ4LTlmMzYtcjh3cM4AAlLD
Magento security mitigation bypass vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS13N3JoLTl3NXYtcndxas4AAlKh
Magento defense-in-depth security mitigation vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1jM200LWh4djktNG14as4AAlKP
Magento command injection vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS04d203LWgycWgtZmY0Y84AAlKU
Magento authorization bypass vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS01NWd2LWhmZzMtaHdqcc4AAlKV
Magento Defense-in-depth security mitigation vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1jNTVoLTdxNGotZzZycc4AAlKQ
Magento command injection vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00NWg0LTZnY2otNmh3ds4AAlKO
Magento Stored cross-site scripting
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS1qMnI0LTJjcjYtaDNyM84AAlKd
Magento Signature verification bypass
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS03MjR4LWdxaHYtOWM1eM4AAlJ-
Magento command injection vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1qMmpwLTU4Z3YtZzJwZ84AAlLP
Magento Security mitigation bypass vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS12cnAzLXdjMjgtcWcyaM4AAlKN
Magento Security mitigation bypass vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0ydzJ4LTdxZ2otNHg3OM4AAlJ8
Magento stored cross-site scripting vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS00Zjd4LWdqcWMtcXFwZ84AAlKL
Magento command injection vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02ODl3LTJmOTMtMng2N84AAlKJ
Magento stored cross-site scripting vulnerability
Ecosystems: packagist
Packages: magento/community-edition, magento/core
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS14OXA3LXZncDItOXBxMs4AAjcS
Magento security bypass vulnerability
Ecosystems: packagist
Packages: magneto/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1wNXEzLXhnNDctNjUzbc4AAjck
Magento stored cross-site scripting vulnerability
Ecosystems: packagist
Packages: magneto/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS05d2M5LTQ5OHctaDh4ds4AAjcc
Magento deserialization vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04NzRnLXB4cXAtZnJxcM4AAjci
Magento Path Traversal
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tZ2czLXY5NDgtMnZncs4AAjcg
Magento stored cross-site scripting vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS1ycjU5LXBqd2otNmdyas4AAjce
Magento sql injection vulnerability
Ecosystems: packagist
Packages: magento/core, magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02dmM4LTN4ZjItcXJ4eM4AAil8
Magento 2 Community Edition RCE Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.1
Published: about 2 years ago
High
GSA_kwCzR0hTQS03NzV3LWd4M2YtNGo0Zs4AAilr
Magento 2 Community Edition SSRF vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS04cDVjLWY4MzYtbTRoN84AAils
Magento 2 Community Edition XML Injection
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS1mNzNoLTIyNGMtNjJxcs4AAil7
Magento Server-Side Request Forgery (SSRF)
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12cnc0LTM0cDUtcGpnNc4AAilw
Magento Cross-Site Scripting via admin panel
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS00N2g2LWhmcHYtN3Boas4AAilz
Magento 2 Community Edition RCE Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: about 2 years ago
High
GSA_kwCzR0hTQS1wNzgzLWdqNm0tOXI4OM4AAilu
Magento 2 Community Edition RCE Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1qam1nLXhtcTItZzZmZs4AAil9
Magento 2 Community Edition XSS Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04NnBjLTZtbTgtNTQycs4AAilt
Magento 2 Community Edition XSS Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05NHE4LWd4MjktNm1xds4AAilp
Magento Injection vulnerability via email templates
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12OGZnLXAyN2gtbXhqcM4AAil2
Magento 2 Community Edition XSS Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0yNzNyLXY4ODgtdmdjNs4AAimA
Magento Cross-site Scripting (XSS)
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 6.6
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02bTI3LTNyOHEtYzdmN84AAily
Magento 2 Community Edition XSS Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS12cGc5LWdxN2otbXhxZ84AAilq
Magento 2 Community Edition RCE Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 10.6
Published: about 2 years ago
High
GSA_kwCzR0hTQS1qcmp4LThnbXctamoycc4AAimQ
Magento 2 Community Edition RCE Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS04NXh3LTNocDUtNmZtY84AAilm
Magento 2 Community Edition XSS Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1namptLTR4M2ctM2gzM84AAilj
Magento 2 Community Edition XSS Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0yOThxLXd2MmgtdjV2d84AAiln
Magento 2 Community Edition XSS Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS00NWdqLTc4aGMtNG12Y84AAimR
Magento SQL injection via marketing account with access to email templates variables
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS03cHIzLTM0cmctZzUzbc4AAimT
Magento Unrestricted file upload vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: about 2 years ago
High
GSA_kwCzR0hTQS05d3I5LWZ3OXYtOGZncs4AAilo
Magento 2 Community Edition RCE Vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 7.8
Published: about 2 years ago
High
GSA_kwCzR0hTQS14NDJnLTgycHAtNHY2Z84AAilf
Magento SQL injection vulnerability
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1taHdjLTR3NjcteHEyY84AAile
Magento Cross-Site Scripting via store name
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Blast Radius: 5.8
Published: about 2 years ago
Statistics
Advisories: 19,517
Packages: 8,615
Repositories: 2
Ecosystems: 12
Filter by Package
moodle/moodle 342 magento/community-edition 204 typo3/cms 174 pimcore/pimcore 117 dolibarr/dolibarr 111 typo3/cms-core 106 phpmyadmin/phpmyadmin 92 microweber/microweber 91 drupal/core 91 silverstripe/framework 85 drupal/drupal 76 thorsten/phpmyfaq 70 symfony/symfony 64 librenms/librenms 54 concrete5/concrete5 52 shopware/platform 48 baserproject/basercms 43 craftcms/cms 40 showdoc/showdoc 40 intelliants/subrion 39 froxlor/froxlor 37 nilsteampassnet/teampass 37 shopware/core 36 zendframework/zendframework1 34 snipe/snipe-it 33 mautic/core 30 shopware/shopware 30 getgrav/grav 29 centreon/centreon 27 prestashop/prestashop 26 mediawiki/core 24 magento/core 24 simplesamlphp/simplesamlphp 23 remdex/livehelperchat 23 grumpydictator/firefly-iii 23 pocketmine/pocketmine-mp 23 zendframework/zendframework 23 getkirby/cms 22 contao/core-bundle 21 tribalsystems/zenario 20 laravel/framework 19 contao/contao 18 cockpit-hq/cockpit 18 forkcms/forkcms 18 genix/cms 17 symfony/security 17 topthink/framework 17 cakephp/cakephp 17 ezsystems/ezpublish-kernel 17 francoisjacquet/rosariosis 17 opencart/opencart 16 yetiforce/yetiforce-crm 16 openmage/magento-lts 15 october/system 15 smarty/smarty 15 ec-cube/ec-cube 15 phpmailer/phpmailer 14 symfony/security-http 14 silverstripe/cms 14 typo3/cms-backend 14 codeigniter4/framework 13 impresscms/impresscms 13 lavalite/cms 13 elefant/cms 13 bolt/bolt 13 phpmyfaq/phpmyfaq 12 phpbb/phpbb 12 studio-42/elfinder 12 dompdf/dompdf 12 sylius/sylius 12 feehi/cms 11 feehi/feehicms 11 symfony/http-foundation 11 ezsystems/ezplatform-kernel 11 pimcore/admin-ui-classic-bundle 11 tinymce/tinymce 11 tinymce 11 TinyMCE 11 wwbn/avideo 11 ssddanbrown/bookstack 10 nukeviet/nukeviet 10 admidio/admidio 10 ezsystems/ezpublish-legacy 10 pagekit/pagekit 10 wallabag/wallabag 10 yiisoft/yii2 10 alextselegidis/easyappointments 9 contao/core 9 concrete5/core 9 october/october 9 kevinpapst/kimai2 9 funadmin/funadmin 9 croogo/croogo 8 codiad/codiad 8 composer/composer 8 gilacms/gila 8 statamic/cms 8 october/cms 8 facturascripts/facturascripts 8 sulu/sulu 8 pimcore/customer-management-framework-bundle 8 silverstripe/admin 8 silverstripe/graphql 8 pterodactyl/panel 7 october/backend 7 ezsystems/ezplatform-admin-ui 7 passbolt/passbolt_api 7 wpglobus/wpglobus 7 mantisbt/mantisbt 7 flarum/core 7 symfony/http-kernel 7 gleez/cms 6 backdrop/backdrop 6 oro/platform 6 zoujingli/thinkadmin 6 guzzlehttp/guzzle 6 nystudio107/craft-seomatic 6 dweeves/magmi 6 yourls/yourls 6 vrana/adminer 6 directmailteam/direct-mail 6 bagisto/bagisto 6 in2code/femanager 6 yiisoft/yii2-dev 6 phpseclib/phpseclib 6 twig/twig 5 phpxmlrpc/phpxmlrpc 5 symfony/security-core 5 woocommerce/woocommerce 5 elgg/elgg 5 neos/flow 5 neos/neos 5 illuminate/database 5 automad/automad 5 cachethq/cachet 5 typo3/cms-install 5 phpservermon/phpservermon 5 simplesamlphp/saml2 5 pear/archive_tar 5 typo3/flow 5 bottelet/flarepoint 5 silverstripe/assets 5 codeigniter/framework 5 ibexa/core 5 anchorcms/anchor-cms 5 billz/raspap-webgui 5 gugoan/economizzer 5 thinkcmf/thinkcmf 5 shopware/storefront 4 ezsystems/ezplatform 4 codeigniter4/shield 4 appwrite/server-ce 4 kimai/kimai 4 bref/bref 4 wintercms/winter 4 modx/revolution 4 idno/known 4 evolutioncms/evolution 4 symfony/security-bundle 4 notrinos/notrinos-erp 4 pyrocms/pyrocms 4 bytefury/crater 4 adodb/adodb-php 4 zendframework/zendopenid 4 spatie/browsershot 4 oro/commerce 4 magento/product-community-edition 4 wp-premium/gravityforms 4 sylius/resource-bundle 4 typo3/cms-frontend 4 friendsofsymfony/user-bundle 4 shopxo/shopxo 4 typo3/html-sanitizer 4 zendframework/zend-http 3 buddypress/buddypress 3 ckeditor4 3 reportico-web/reportico 3 facade/ignition 3 phenx/php-svg-lib 3 joomla/framework 3 enhavo/enhavo-app 3 bbpress/bbpress 3 yiisoft/yii 3 symfony/form 3 amphp/http-client 3 zencart/zencart 3 phpoffice/phpspreadsheet 3 flarum/framework 3 doctrine/orm 3 rudloff/alltube 3 froala/wysiwyg-editor 3 apache-solr-for-typo3/solr 3 icecoder/icecoder 3 pixelfed/pixelfed 3 zendframework/zend-diactoros 3 limesurvey/limesurvey 3 verbb/comments 3 illuminate/auth 3 prestashop/productcomments 3 joomla/joomla-cms 3