Browse Security Advisories
Security Advisories for magento/community-edition Clear Filters
Critical
22 days ago
Magento Community Edition Improper Input Validation vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
about 2 months ago
Magento Cross-site Scripting vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
6 months ago
Magento Improper Authorization vulnerability
packagist
magento/community-edition
Critical
8 months ago
Improper Authorization vulnerability in Magento and Adobe Commerce
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento stored Cross-Site Scripting (XSS) vulnerability
packagist
magento/project-community-edition, magento/community-edition
Low
8 months ago
Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento Improper Access Control vulnerability
packagist
magento/project-community-edition, magento/community-edition
Low
8 months ago
Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability
packagist
magento/community-edition
High
8 months ago
Magento stored Cross-Site Scripting (XSS) vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento Improper Access Control vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento Improper Access Control vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento Business Logic Error vulnerability
packagist
magento/project-community-edition, magento/community-edition
Low
8 months ago
Magento Improper Access Control vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento Improper Access Control vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento Information Exposure vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Magento Improper Access Control vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Magento Stored Cross-Site Scripting (XSS) Vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Magento Stored Cross-Site Scripting (XSS) Vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Adobe Commerce Improper Authorization vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Magento Stored Cross-Site Scripting (XSS) Vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento Incorrect Authorization vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Magento Stored Cross-Site Scripting (XSS) Vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Magento Stored Cross-Site Scripting (XSS) Vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
8 months ago
Magento Improper Access Control vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Magento Stored Cross-Site Scripting (XSS) Vulnerability
packagist
magento/project-community-edition, magento/community-edition
High
8 months ago
Magento Stored Cross-Site Scripting (XSS) Vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
12 months ago
Magento Open Source Information Exposure vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Information Exposure vulnerability
packagist
magento/community-edition
High
12 months ago
Magento Open Source Improper Authorization vulnerability
packagist
magento/community-edition
Low
12 months ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Authorization vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Authorization vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Input Validation vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
High
12 months ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source reflected Cross-Site Scripting (XSS) vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Cross-Site Scripting (XSS) vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Incorrect Authorization vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source stored Cross-Site Scripting (XSS) vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Server-Side Request Forgery (SSRF) vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
Moderate
12 months ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
Moderate
about 1 year ago
Magento Open Source Cross-Site Request Forgery vulnerability
packagist
magento/community-edition
Moderate
about 1 year ago
Magento Open Source Cross-Site Request Forgery (CSRF) vulnerability
packagist
magento/community-edition
Moderate
about 1 year ago
Magento Open Source Improper Authorization vulnerability
packagist
magento/community-edition
Moderate
about 1 year ago
Magento Open Source Path Traversal vulnerability
packagist
magento/community-edition
Moderate
about 1 year ago
Magento Open Source Cross-Site Request Forgery (CSRF) vulnerability
packagist
magento/community-edition
Moderate
over 1 year ago
Magento Open Source Server-Side Request Forgery (SSRF) vulnerability
packagist
magento/community-edition
Moderate
over 1 year ago
Magento Open Source Improper Access Control vulnerability
packagist
magento/community-edition
High
over 1 year ago
Magento Open Source Improper Authorization vulnerability
packagist
magento/community-edition
Moderate
over 1 year ago
Magento Open Source Incorrect Authorization vulnerability
packagist
magento/community-edition
Critical
over 1 year ago
Magento Open Source Improper Authentication vulnerability
packagist
magento/community-edition
Critical
over 1 year ago
Magento Open Source affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability
packagist
magento/community-edition
Moderate
over 1 year ago
Magento Open Source Cross-Site Scripting (XSS) vulnerability
packagist
magento/community-edition
Critical
over 1 year ago
Magento RCE,XSS and other vulnerabilities
packagist
magento/community-edition
Moderate
over 1 year ago
Magento Cross-Site Scripting (XSS) vulnerability
packagist
magento/community-edition
Critical
over 1 year ago
Magento remote code execution (RCE), Cross-Site Scripting (XSS) and other vulnerabilities
packagist
magento/community-edition
Critical
over 1 year ago
Magento Open Source Security Advisory: Patch SUPEE-10975
packagist
magento/community-edition
Critical
over 1 year ago
Magento Patch SUPEE-9652 - Remote Code Execution using mail vulnerability
packagist
magento/community-edition
Critical
over 1 year ago
Magento Security enhancements that help close RCE,XSS,CSRF and other vulnerabilities
packagist
magento/community-edition
Critical
over 1 year ago
Magento Patch SUPEE-10752 - Multiple security enhancements vulnerabilities
packagist
magento/community-edition
Moderate
over 1 year ago
Magento Open Source allows Cross-Site Scripting (XSS)
packagist
magento/project-community-edition, magento/community-edition
High
over 1 year ago
Magento Open Source allows Improper Input Validation
packagist
magento/project-community-edition, magento/community-edition
High
over 1 year ago
Magento Open Source allows Cross-Site Scripting (XSS)
packagist
magento/project-community-edition, magento/community-edition
High
over 1 year ago
Magento Open Source allows OS Command Injection
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 1 year ago
Magento Open Source allows Cross-Site Request Forgery (CSRF)
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 1 year ago
Magento Open Source allows Uncontrolled Resource Consumption
packagist
magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago
Magento Open Source allows SQL Injection
packagist
magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago
Magento Open Source allows SQL Injection
packagist
magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago
Magento Open Source allows Uncontrolled Resource Consumption
packagist
magento/project-community-edition, magento/community-edition
Low
almost 2 years ago
Magento Open Source allows Cross-Site Scripting (XSS)
packagist
magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago
Magento Open Source allows Improper Authorization
packagist
magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago
Magento Open Source allows Incorrect Authorization
packagist
magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago
Magento Open Source allows SQL Injection
packagist
magento/community-edition
Moderate
almost 2 years ago
Magento Open Source has Improper Input Validation Vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago
Magento Open Source allows Server-Side Request Forgery (SSRF)
packagist
magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago
Magento Open Source affected by Improper Input Validation
packagist
magento/project-community-edition, magento/community-edition
High
about 2 years ago
Magento Open Source allows Improper Neutralization of Special Elements Used
packagist
magento/project-community-edition, magento/community-edition
Low
about 2 years ago
Magento Open Source allows XML Injection
packagist
magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago
Magento Open Source allows Incorrect Authorization
packagist
magento/project-community-edition, magento/community-edition
Low
about 2 years ago
Magento Open Source allows Cross-Site Scripting (XSS)
packagist
magento/community-edition
Low
over 2 years ago
Magento Open Source has Business Logic Errors Vulnerability
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago
Magento Open Source allows XML Injection
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago
Magento Open Source allows Information Exposure
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago
Magento Open Source allows Incorrect Authorization
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago
Magento Open Source allows Server-Side Request Forgery (SSRF)
packagist
magento/project-community-edition, magento/community-edition
Low
over 2 years ago
Magento Open Source allows Incorrect Authorization
packagist
magento/project-community-edition, magento/community-edition
Low
over 2 years ago
Magento Open Source affected by Improper Input Validation
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago
Magento Open Source allows Incorrect Authorization
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago
Magento Open Source allows Server-Side Request Forgery (SSRF)
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago
Magento Open Source affected by Improper Input Validation
packagist
magento/community-edition
High
over 2 years ago
Magento Open Source allows Improper Neutralization of Special Elements Used
packagist
magento/project-community-edition, magento/community-edition
Low
over 2 years ago
Magento Open Source allows Incorrect Authorization
packagist
magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago
Magento Open Source allows Incorrect Authorization
packagist
magento/project-community-edition, magento/community-edition
Filter by Severity
Filter by Ecosystem
maven
6,770
packagist
5,238
pypi
4,832
npm
4,312
go
2,852
nuget
1,546
cargo
1,085
rubygems
896
actions
39
hex
38
swift
33
pub
9
Filter by Package
tensorflow
430
moodle/moodle
418
tensorflow-cpu
409
tensorflow-gpu
407
magento/community-edition
266
Microsoft.ChakraCore
247
org.jenkins-ci.main:jenkins-core
242
typo3/cms
169
com.liferay.portal:release.portal.bom
146
org.apache.tomcat:tomcat
130
github.com/mattermost/mattermost/server/v8
129
pimcore/pimcore
120
com.liferay.portal:release.dxp.bom
117
dolibarr/dolibarr
116
typo3/cms-core
108
phpmyadmin/phpmyadmin
107
Django
106
microweber/microweber
103
drupal/core
99
magento/project-community-edition
97
silverstripe/framework
91
apache-airflow
86
librenms/librenms
83
thorsten/phpmyfaq
73
drupal/drupal
73
Plone
70
com.fasterxml.jackson.core:jackson-databind
69
github.com/usememos/memos
68
concrete5/concrete5
67
salt
65
ansible
63
apache-superset
61
symfony/symfony
59
actionpack
58
shopware/platform
58
org.apache.struts:struts2-core
56
github.com/grafana/grafana
56
mlflow
53
craftcms/cms
53
org.keycloak:keycloak-core
50
github.com/hashicorp/vault
49
github.com/rancher/rancher
48
nova
48
mautic/core
47
baserproject/basercms
47
shopware/core
46
nokogiri
45
vyper
44
gradio
44
org.xwiki.platform:xwiki-platform-oldcore
43
rdiffweb
42
matrix-synapse
42
k8s.io/kubernetes
42
org.keycloak:keycloak-services
42
nilsteampassnet/teampass
42
showdoc/showdoc
41
org.elasticsearch:elasticsearch
41
mantisbt/mantisbt
41
github.com/mattermost/mattermost-server
41
froxlor/froxlor
40
intelliants/subrion
40
picklescan
39
directus
38
snipe/snipe-it
38
org.apache.tomcat.embed:tomcat-embed-core
37
com.thoughtworks.xstream:xstream
37
github.com/mattermost/mattermost-server/v6
36
net.mingsoft:ms-mcms
36
com.jfinal:jfinal
36
github.com/argoproj/argo-cd/v2
35
moin
35
io.undertow:undertow-core
35
github.com/answerdev/answer
34
parse-server
33
org.jenkins-ci.plugins:script-security
33
gogs.io/gogs
32
keystone
32
zendframework/zendframework1
32
github.com/hashicorp/nomad
31
opencv-python
31
github.com/argoproj/argo-cd
31
shopware/shopware
31
github.com/cilium/cilium
31
opencv-contrib-python
30
github.com/docker/docker
30
getgrav/grav
30
rack
30
github.com/hashicorp/consul
29
next
29
pillow
28
plone
28
mediawiki/core
28
electron
28
org.apache.solr:solr-core
28
Pillow
28
contao/core-bundle
27
DotNetNuke.Core
27
centreon/centreon
27
django
27
org.springframework.security:spring-security-core
27
org.opencms:opencms-core
27
prestashop/prestashop
27
openssl-src
25
pocketmine/pocketmine-mp
25
vllm
25
github.com/traefik/traefik/v2
25
rubygems-update
25
open-webui
25
org.eclipse.jetty:jetty-server
25
flowise
24
surrealdb
24
org.keycloak:keycloak-parent
24
getkirby/cms
24
org.apache.tomcat:tomcat-catalina
23
pyload-ng
23
laravel/framework
23
remdex/livehelperchat
23
simplesamlphp/simplesamlphp
23
grumpydictator/firefly-iii
23
puppet
23
org.apache.openmeetings:openmeetings-parent
22
zendframework/zendframework
22
tribalsystems/zenario
22
ckb
22
activerecord
22
org.apache.nifi:nifi
21
github.com/goharbor/harbor
21
@openzeppelin/contracts
21
org.bouncycastle:bcprov-jdk14
21
github.com/ethereum/go-ethereum
21
glance
21
contao/contao
21
@openzeppelin/contracts-upgradeable
21
cockpit-hq/cockpit
20
funadmin/funadmin
20
org.xwiki.platform:xwiki-platform-web-templates
20
org.cloudfoundry.identity:cloudfoundry-identity-server
20
code.gitea.io/gitea
20
typo3/cms-backend
20
wasmtime
20
aim
20
ethyca-fides
20
phpoffice/phpspreadsheet
19
topthink/framework
19
transformers
19
github.com/zitadel/zitadel
19
helm.sh/helm/v3
19
neutron
19
deno
19
org.springframework:spring-core
18
com.vaadin:vaadin-bom
18
cobbler
18
golang.org/x/net
18
genix/cms
18
forkcms/forkcms
18
org.apache.tomcat:tomcat-coyote
18
langchain
18
Microsoft.AspNetCore.App.Runtime.win-x64
18
mindsdb
18
org.apache.jspwiki:jspwiki-main
18
mercurial
18
Microsoft.AspNetCore.App.Runtime.win-x86
18
org.apache.inlong:manager-pojo
17
Microsoft.AspNetCore.App.Runtime.linux-arm
17
opencart/opencart
17
Microsoft.AspNetCore.App.Runtime.win-arm
17
yetiforce/yetiforce-crm
17
github.com/openfga/openfga
17
cakephp/cakephp
17
OctoPrint
17
openmage/magento-lts
17
Microsoft.AspNetCore.App.Runtime.linux-arm64
17
org.apache.geode:geode-core
17
francoisjacquet/rosariosis
17
cryptography
17
calibreweb
17
ezsystems/ezpublish-kernel
17
notebook
17
PaddlePaddle
16
Microsoft.AspNetCore.App.Runtime.win-arm64
16
phpbb/phpbb
16
org.apache.ranger:ranger
16
org.apache.dubbo:dubbo
16
org.apache.activemq:activemq-client
16
sequelize
16
github.com/traefik/traefik/v3
16
lollms
16
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
16
rusqlite
16
ghost
16
tinymce
16
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
16
paddlepaddle
16
pimcore/admin-ui-classic-bundle
15
Microsoft.NetCore.App.Runtime.win-arm64
15
undici
15
h2o
15
Microsoft.AspNetCore.App.Runtime.osx-x64
15
Microsoft.AspNetCore.App.Runtime.linux-x64
15
Microsoft.NetCore.App.Runtime.win-arm
15