Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist

magento/project-community-edition

packagist

eCommerce Platform for Growth (Community Edition)

View on github.com · View on packagist.org

Security Advisories for magento/project-community-edition in packagist

High
9 days ago

Magento vulnerable to stored Cross-Site Scripting (XSS) GSA_kwCzR0hTQS0yNzY4LTV3bXYtY2ZmZs4ABNav

packagist magento/community-edition, magento/project-community-edition
High
9 days ago

Magento provides incorrect authorization through a security feature bypass GSA_kwCzR0hTQS02OXg5LXhwMmotdzhnOM4ABNa2

packagist magento/project-community-edition, magento/community-edition
Moderate
9 days ago

Magento vulnerable to privilege escalation due to incorrect authorization GSA_kwCzR0hTQS1xdndyLXAzaGotajZqZs4ABNa1

packagist magento/community-edition, magento/project-community-edition
Moderate
9 days ago

Magento vulnerable to stored Cross-Site Scripting (XSS) GSA_kwCzR0hTQS1wY3J4LXI0OWgteDJ3Nc4ABNay

packagist magento/community-edition, magento/project-community-edition
Critical
about 1 month ago

Magento Community Edition Improper Input Validation vulnerability GSA_kwCzR0hTQS13aDkyLTZxNmctcHg3as4ABL2A

packagist magento/project-community-edition, magento/community-edition
High
2 months ago

Magento Cross-site Scripting vulnerability GSA_kwCzR0hTQS04bXE4LWMyNDMtMjMzNc4ABK9P

packagist magento/project-community-edition, magento/community-edition
High
2 months ago

Magento vulnerable to denial of service GSA_kwCzR0hTQS14Z2ZtLTk5MnYtaDJocs4ABK-V

packagist magento/community-edition, magento/project-community-edition
High
2 months ago

Magento Cross-Site Request Forgery (CSRF) vulnerability GSA_kwCzR0hTQS01Nzc3LWpqN3AtbXBxd84ABK9E

packagist magento/community-edition, magento/project-community-edition
Moderate
2 months ago

Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability GSA_kwCzR0hTQS13Y213LTh4cHAtcndmas4ABK9G

packagist magento/community-edition, magento/project-community-edition
Moderate
2 months ago

Magento vulnerable to path traversal GSA_kwCzR0hTQS1oNGY0LWd2NmgteDgyNM4ABK-Q

packagist magento/community-edition, magento/project-community-edition
High
2 months ago

Magento has incorrect authorization issue that leads to arbitrary file system read GSA_kwCzR0hTQS03aHJqLTNjOXgteHY1aM4ABK9L

packagist magento/community-edition, magento/project-community-edition
Low
4 months ago

Magento Authenticated Security feature bypass GSA_kwCzR0hTQS04NWp4LXg5cjQtNDVtMs4ABJcL

packagist magento/community-edition, magento/project-community-edition
Moderate
4 months ago

Magento Security feature bypass GSA_kwCzR0hTQS04aGN4LXh2d3ctNmM2aM4ABJcR

packagist magento/community-edition, magento/project-community-edition
High
5 months ago

Magento Improper Authorization leading to security feature bypass GSA_kwCzR0hTQS1yNDg3LTl2djUtNzVnZ84ABI4K

packagist magento/community-edition, magento/project-community-edition
Moderate
5 months ago

Magento Improper Access Control leads to security feature bypass GSA_kwCzR0hTQS1nMnBqLXhteHEtM3I5cc4ABI4G

packagist magento/community-edition, magento/project-community-edition
Moderate
7 months ago

Magento Improper Access Control leads to Security feature bypass GSA_kwCzR0hTQS02d3E3LWNnOWgtbWo2cc4ABGmt

packagist magento/community-edition, magento/project-community-edition
Moderate
7 months ago

Magento Improper Access Control leads to Security feature bypass GSA_kwCzR0hTQS12aGNxLTR4cm0tMmNyMs4ABGmx

packagist magento/community-edition, magento/project-community-edition
Low
7 months ago

Magento does not properly protect credentials GSA_kwCzR0hTQS0ycjk0LXdtNXYtNHByeM4ABGmp

packagist magento/community-edition, magento/project-community-edition
Critical
8 months ago

Improper Authorization vulnerability in Magento and Adobe Commerce GSA_kwCzR0hTQS1mcHBxLWYybTYteHY1Y84ABEWV

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Business Logic Error vulnerability GSA_kwCzR0hTQS02ZmY4LWpyZmctNDNoaM4ABEWI

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS00NjlmLXdmNGYtM2pqds4ABEWZ

packagist magento/project-community-edition, magento/community-edition
Low
8 months ago

Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability GSA_kwCzR0hTQS02dzI3LWM2NmYtZ3Zocc4ABEVz

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS12M2hxLWc0MjQtNW1nZ84ABEWN

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento stored Cross-Site Scripting (XSS) vulnerability GSA_kwCzR0hTQS04ODg0LTdybTktbXJ4NM4ABEWQ

packagist magento/project-community-edition, magento/community-edition
Low
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS02NTZxLWZ4MnctOGNjds4ABEVr

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS1naHByLTZxaHItcnBwOM4ABEWY

packagist magento/project-community-edition, magento/community-edition
Low
8 months ago

Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability GSA_kwCzR0hTQS03am1yLTQzcWotcHc0N84ABEVw

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS04MnA0LTU1Z2otOTU2cM4ABEWS

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Adobe Commerce Path Traversal GSA_kwCzR0hTQS05NTRwLWZmNzItMzI3d84ABEWB

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1nYzI3LXJ2dm0tcTc3cs4ABEWR

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS0zNmh3LXgzY2MtbTI1OM4ABEV2

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1tNHJnLW1wcDItOTdweM4ABEV_

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1nanhwLTQ2cnEtd2c0cc4ABEV5

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Incorrect Authorization vulnerability GSA_kwCzR0hTQS12NnIyLTQyNWMtaGZycs4ABEWJ

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1maHc2LTNtajUtdzlnds4ABEWL

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS01Mzl2LXc4N3ctdzYyY84ABEWG

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1yamp3LWc2aHctN3BjOc4ABEWW

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1nM2o2LTk3NTMtOG1wMs4ABEWP

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS14d2d4LTh2NzItNGo1as4ABEWT

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Adobe Commerce Improper Authorization vulnerability GSA_kwCzR0hTQS12dzQ3LTc5anYtMzU5OM4ABEV4

packagist magento/project-community-edition, magento/community-edition
Moderate
about 1 year ago

Magento Improper Authorization leads to security feature bypass GSA_kwCzR0hTQS1xbTc3LW1xZjMtZm1occ4AA-ol

packagist magento/community-edition, magento/project-community-edition
Moderate
about 1 year ago

Magento Improper Access Control Leads to Privilege escalation GSA_kwCzR0hTQS03NHc3LWNyNHYtd2Yyds4AA-ok

packagist magento/community-edition, magento/project-community-edition
Moderate
about 1 year ago

Magento Improper Authorization Leading to Security feature bypass GSA_kwCzR0hTQS1najkzLTg0ZzUtbWNqcc4AA-op

packagist magento/community-edition, magento/project-community-edition
Moderate
about 1 year ago

Magento Improper Authorization leads to Security feature bypass GSA_kwCzR0hTQS00eGdnLXJ3MzUtN212Nc4AA-oi

packagist magento/community-edition, magento/project-community-edition
Moderate
about 1 year ago

Magento Improper Access Control Leads to Privilege escalation GSA_kwCzR0hTQS14NmY5LWh2OXItZmdxNM4AA-of

packagist magento/community-edition, magento/project-community-edition
Moderate
about 1 year ago

Magento Improper Authorization leads to Security feature bypass GSA_kwCzR0hTQS00eG1qLWY2NjQtaHY5OM4AA-oc

packagist magento/community-edition, magento/project-community-edition
High
over 1 year ago

Magento Open Source allows Improper Input Validation GSA_kwCzR0hTQS13aDRtLTZyaDMtcDRycc4AA63V

packagist magento/project-community-edition, magento/community-edition
High
over 1 year ago

Magento Open Source allows Cross-Site Scripting (XSS) GSA_kwCzR0hTQS0yNjRnLWY3djgtcTVxcc4AA5Ue

packagist magento/project-community-edition, magento/community-edition
High
over 1 year ago

Magento Open Source allows OS Command Injection GSA_kwCzR0hTQS01MjVmLXB2ajUtdnFtcc4AA5Uh

packagist magento/project-community-edition, magento/community-edition
Moderate
over 1 year ago

Magento Open Source allows Uncontrolled Resource Consumption GSA_kwCzR0hTQS1jOWg5LWg1Z2YtODg1cs4AA5UQ

packagist magento/project-community-edition, magento/community-edition
Moderate
over 1 year ago

Magento Open Source allows Cross-Site Request Forgery (CSRF) GSA_kwCzR0hTQS1ocWdqLTQzOTYtaG14ds4AA5UR

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows SQL Injection GSA_kwCzR0hTQS1oM2c5LWN3cjYtaHBoeM4AA2bk

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows Uncontrolled Resource Consumption GSA_kwCzR0hTQS03cGZjLTgzNHEtaDQ5N84AA2bm

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows SQL Injection GSA_kwCzR0hTQS1ycTM2LTlmNWYtMmd3N84AA2bl

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS1ycGM3LWdmNTgtdjN4Ms4AA2bj

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows SQL Injection GSA_kwCzR0hTQS1nZ3I4LTNod3gtNGYybc4AA2be

packagist magento/project-community-edition, magento/community-edition
Low
about 2 years ago

Magento Open Source allows Cross-Site Scripting (XSS) GSA_kwCzR0hTQS0zajd3LWpwNDYtOTc1Ms4AA2bi

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows Server-Side Request Forgery (SSRF) GSA_kwCzR0hTQS04anhjLTVmOTQtMjJ2aM4AA2bf

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows Improper Authorization GSA_kwCzR0hTQS1ncmM2LXI2ZjgteGo3Y84AA2bh

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source affected by Improper Input Validation GSA_kwCzR0hTQS01eG1wLTd3ZzUteDY4cc4AA17M

packagist magento/project-community-edition, magento/community-edition
High
about 2 years ago

Magento Open Source allows Improper Neutralization of Special Elements Used GSA_kwCzR0hTQS1teGM5LWc2bTQtMnYzNc4AA1K5

packagist magento/project-community-edition, magento/community-edition
Low
about 2 years ago

Magento Open Source allows XML Injection GSA_kwCzR0hTQS1ycHYyLWc0cGMtd3A3Ms4AA1K6

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS0zdmcyLXY2MzktNmNoOc4AA1K9

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source affected by Improper Input Validation GSA_kwCzR0hTQS01amZnLXBoeDctN2Z4Z84AAz4n

packagist magento/project-community-edition, magento/community-edition
Low
over 2 years ago

Magento Open Source has Business Logic Errors Vulnerability GSA_kwCzR0hTQS0yOHZwLTM5cmYtM3Eyas4AAz4q

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS1xdzVtLXZtcDMtZjU1M84AAz4v

packagist magento/project-community-edition, magento/community-edition
Low
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS0zNTRoLWZwbXEtNjh2N84AAz4Z

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Server-Side Request Forgery (SSRF) GSA_kwCzR0hTQS00NTg4LTd4NDgtanJnas4AAz41

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS1mOTg5LTNmcDktcTNyMs4AAz4U

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows XML Injection GSA_kwCzR0hTQS13aDQyLThyMnctODczeM4AAz4V

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Information Exposure GSA_kwCzR0hTQS04NW00LWc5dnEteHB4as4AAz4m

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Server-Side Request Forgery (SSRF) GSA_kwCzR0hTQS01Zjc5LXZocjQtdncycs4AAz44

packagist magento/project-community-edition, magento/community-edition
Low
over 2 years ago

Magento Open Source affected by Improper Input Validation GSA_kwCzR0hTQS02NmM5LXhyd2otOXh2Ns4AAz4t

packagist magento/project-community-edition, magento/community-edition
High
over 2 years ago

Magento Open Source allows Improper Neutralization of Special Elements Used GSA_kwCzR0hTQS1nZm1tLXd3NmYtNW1tNc4AAz49

packagist magento/project-community-edition, magento/community-edition
Low
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS0zcXI0LXc5NmYtNjcyds4AAz4W

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS0yd203LW1tZ2MtcXhyM84AAyWc

packagist magento/project-community-edition, magento/community-edition
High
over 2 years ago

Magento Open Source allows XML Injection GSA_kwCzR0hTQS0yNDQ0LThnajgtNmZteM4AAyWb

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Improper Access Control GSA_kwCzR0hTQS00aDdwLTR2cTgtZzJnaM4AAyWV

packagist magento/project-community-edition, magento/community-edition
Moderate
about 3 years ago

Magento Open Source allows Improper Access Control GSA_kwCzR0hTQS01Znh4LWp3am0teDloas4AAvWb

packagist magento/project-community-edition, magento/community-edition
High
about 3 years ago

Magento Open Source allows Stored Cross-Site Scripting (Stored XSS) GSA_kwCzR0hTQS00dmoyLTQyNnItam0zZ84AAvWU

packagist magento/project-community-edition, magento/community-edition
Moderate
about 3 years ago

Magento Open Source has Improper Access Control vulnerability GSA_kwCzR0hTQS1nbTRtLTlybTgtN3J4as4AAuWg

packagist magento/community-edition, magento/project-community-edition
Moderate
over 3 years ago

Magento Open Source allows Cross-Site Request Forgery (CSRF) GSA_kwCzR0hTQS05NHdxLTg3ZzYtOGg3N84AAqUH

packagist magento/project-community-edition, magento/community-edition
Moderate
over 3 years ago

Magento Improper Authorization vulnerability in the customers module GSA_kwCzR0hTQS1jYzN3LXIzdzgtaGZoN84AApzl

packagist magento/project-community-edition
High
over 3 years ago

Magento Violation of Secure Design Principles vulnerability in RMA PDF filename formats GSA_kwCzR0hTQS03Z2g2LWY0amgtM2Nycc4AAo-E

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento DOM-based Cross-Site Scripting vulnerability on mage-messages cookies GSA_kwCzR0hTQS0zOWNoLXJnMjYtZ21xNc4AAo-X

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Improper input validation vulnerability GSA_kwCzR0hTQS1jMzhtLTk2NjgtNmoyd84AAo-D

packagist magento/project-community-edition, magento/community-edition
Moderate
over 3 years ago

Magento Path Traversal vulnerability GSA_kwCzR0hTQS03Z3B2LXhyanItZjVoNM4AAo-L

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Insufficient Session Expiration GSA_kwCzR0hTQS00aDNwLTYzeDYtdndnMs4AAnik

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento cross-site request forgery (CSRF) vulnerability via the GraphQL API GSA_kwCzR0hTQS1oNHhjLTU3N3AtaGdqOc4AAniP

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento improper authorization vulnerability in the integrations module GSA_kwCzR0hTQS1jcmpjLTJ2OW0tOHc3cs4AAniu

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento stored cross-site scripting vulnerability in the admin console GSA_kwCzR0hTQS1oNXJtLW03NzItNnFjeM4AAnie

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Insufficient Session Expiration GSA_kwCzR0hTQS00amZxLWY4aGMtNzc1cc4AAnia

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Insecure Direct Object Reference (IDOR) in the product module GSA_kwCzR0hTQS04cGZxLWc0OHAteDd3OM4AAniY

packagist magento/project-community-edition
High
over 3 years ago

Magento stored cross-site scripting (XSS) in the customer address upload feature GSA_kwCzR0hTQS02OTg4LWc4OW0tMjd2Zs4AAniS

packagist magento/project-community-edition
Critical
over 3 years ago

Magento vulnerable to a file upload restriction bypass GSA_kwCzR0hTQS0yNjl3LXBxYzctNjhxOc4AAniK

packagist magento/project-community-edition
Critical
over 3 years ago

Magento XPath Injection GSA_kwCzR0hTQS1oNDM3LXFqajktdm1xNM4AAniO

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Improper Access Control GSA_kwCzR0hTQS0yajZ2LTgyOWctODg1cc4AAniR

packagist magento/project-community-edition
Critical
over 3 years ago

Magento OS command injection via the WebAPI GSA_kwCzR0hTQS03OTJmLWM4bXAtMmNyNc4AAnh_

packagist magento/project-community-edition
Critical
over 3 years ago

Magento 2 Community Edition RCE via Unsafe File Upload GSA_kwCzR0hTQS03cHhnLTZwODctOGM5ds4AAmmL

packagist magento/project-community-edition
Low
over 3 years ago

Magento incorrect user permissions vulnerability within the Inventory component GSA_kwCzR0hTQS0zOXJ3LTRtNjYtODJnZs4AAmmH

packagist magento/project-community-edition

Filter by Severity

Moderate 61 High 30 Critical 16 Low 12