Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist

magento/project-community-edition

packagist

eCommerce Platform for Growth (Community Edition)

View on github.com · View on packagist.org

Security Advisories for magento/project-community-edition in packagist

Critical
24 days ago

Magento Community Edition Improper Input Validation vulnerability GSA_kwCzR0hTQS13aDkyLTZxNmctcHg3as4ABL2A

packagist magento/project-community-edition, magento/community-edition
High
about 2 months ago

Magento Cross-site Scripting vulnerability GSA_kwCzR0hTQS04bXE4LWMyNDMtMjMzNc4ABK9P

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS12M2hxLWc0MjQtNW1nZ84ABEWN

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS04MnA0LTU1Z2otOTU2cM4ABEWS

packagist magento/project-community-edition, magento/community-edition
Low
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS02NTZxLWZ4MnctOGNjds4ABEVr

packagist magento/project-community-edition, magento/community-edition
Low
8 months ago

Magento Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability GSA_kwCzR0hTQS03am1yLTQzcWotcHc0N84ABEVw

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento stored Cross-Site Scripting (XSS) vulnerability GSA_kwCzR0hTQS1tbTg3LXJycXgtOTRjcs4ABEWC

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS00NjlmLXdmNGYtM2pqds4ABEWZ

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento stored Cross-Site Scripting (XSS) vulnerability GSA_kwCzR0hTQS04ODg0LTdybTktbXJ4NM4ABEWQ

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS1naHByLTZxaHItcnBwOM4ABEWY

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Business Logic Error vulnerability GSA_kwCzR0hTQS02ZmY4LWpyZmctNDNoaM4ABEWI

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1nYzI3LXJ2dm0tcTc3cs4ABEWR

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1maHc2LTNtajUtdzlnds4ABEWL

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS14d2d4LTh2NzItNGo1as4ABEWT

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Information Exposure vulnerability GSA_kwCzR0hTQS0zY2ZnLXcyNTctY2dmOM4ABEV-

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1nM2o2LTk3NTMtOG1wMs4ABEWP

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Adobe Commerce Path Traversal GSA_kwCzR0hTQS05NTRwLWZmNzItMzI3d84ABEWB

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Improper Access Control vulnerability GSA_kwCzR0hTQS01Mzl2LXc4N3ctdzYyY84ABEWG

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1yamp3LWc2aHctN3BjOc4ABEWW

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Adobe Commerce Improper Authorization vulnerability GSA_kwCzR0hTQS12dzQ3LTc5anYtMzU5OM4ABEV4

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1tNHJnLW1wcDItOTdweM4ABEV_

packagist magento/project-community-edition, magento/community-edition
High
8 months ago

Magento Stored Cross-Site Scripting (XSS) Vulnerability GSA_kwCzR0hTQS1nanhwLTQ2cnEtd2c0cc4ABEV5

packagist magento/project-community-edition, magento/community-edition
Moderate
8 months ago

Magento Incorrect Authorization vulnerability GSA_kwCzR0hTQS12NnIyLTQyNWMtaGZycs4ABEWJ

packagist magento/project-community-edition, magento/community-edition
High
over 1 year ago

Magento Open Source allows Improper Input Validation GSA_kwCzR0hTQS13aDRtLTZyaDMtcDRycc4AA63V

packagist magento/project-community-edition, magento/community-edition
Moderate
over 1 year ago

Magento Open Source allows Cross-Site Scripting (XSS) GSA_kwCzR0hTQS01OXZmLWhqeGMtZjljNc4AA63U

packagist magento/project-community-edition, magento/community-edition
High
over 1 year ago

Magento Open Source allows OS Command Injection GSA_kwCzR0hTQS01MjVmLXB2ajUtdnFtcc4AA5Uh

packagist magento/project-community-edition, magento/community-edition
High
over 1 year ago

Magento Open Source allows Cross-Site Scripting (XSS) GSA_kwCzR0hTQS0yNjRnLWY3djgtcTVxcc4AA5Ue

packagist magento/project-community-edition, magento/community-edition
Moderate
over 1 year ago

Magento Open Source allows Uncontrolled Resource Consumption GSA_kwCzR0hTQS1jOWg5LWg1Z2YtODg1cs4AA5UQ

packagist magento/project-community-edition, magento/community-edition
Moderate
over 1 year ago

Magento Open Source allows Cross-Site Request Forgery (CSRF) GSA_kwCzR0hTQS1ocWdqLTQzOTYtaG14ds4AA5UR

packagist magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago

Magento Open Source allows Uncontrolled Resource Consumption GSA_kwCzR0hTQS03cGZjLTgzNHEtaDQ5N84AA2bm

packagist magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago

Magento Open Source allows SQL Injection GSA_kwCzR0hTQS1ycTM2LTlmNWYtMmd3N84AA2bl

packagist magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago

Magento Open Source allows SQL Injection GSA_kwCzR0hTQS1oM2c5LWN3cjYtaHBoeM4AA2bk

packagist magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago

Magento Open Source has Improper Input Validation Vulnerability GSA_kwCzR0hTQS05bXg2LTRnZzQtODV4as4AA2bg

packagist magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS1ycGM3LWdmNTgtdjN4Ms4AA2bj

packagist magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago

Magento Open Source allows Improper Authorization GSA_kwCzR0hTQS1ncmM2LXI2ZjgteGo3Y84AA2bh

packagist magento/project-community-edition, magento/community-edition
Moderate
almost 2 years ago

Magento Open Source allows Server-Side Request Forgery (SSRF) GSA_kwCzR0hTQS04anhjLTVmOTQtMjJ2aM4AA2bf

packagist magento/project-community-edition, magento/community-edition
Low
almost 2 years ago

Magento Open Source allows Cross-Site Scripting (XSS) GSA_kwCzR0hTQS0zajd3LWpwNDYtOTc1Ms4AA2bi

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source affected by Improper Input Validation GSA_kwCzR0hTQS01eG1wLTd3ZzUteDY4cc4AA17M

packagist magento/project-community-edition, magento/community-edition
Low
about 2 years ago

Magento Open Source allows XML Injection GSA_kwCzR0hTQS1ycHYyLWc0cGMtd3A3Ms4AA1K6

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS0zdmcyLXY2MzktNmNoOc4AA1K9

packagist magento/project-community-edition, magento/community-edition
High
about 2 years ago

Magento Open Source allows Improper Neutralization of Special Elements Used GSA_kwCzR0hTQS1teGM5LWc2bTQtMnYzNc4AA1K5

packagist magento/project-community-edition, magento/community-edition
Low
over 2 years ago

Magento Open Source affected by Improper Input Validation GSA_kwCzR0hTQS02NmM5LXhyd2otOXh2Ns4AAz4t

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Information Exposure GSA_kwCzR0hTQS04NW00LWc5dnEteHB4as4AAz4m

packagist magento/project-community-edition, magento/community-edition
Low
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS0zcXI0LXc5NmYtNjcyds4AAz4W

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Server-Side Request Forgery (SSRF) GSA_kwCzR0hTQS00NTg4LTd4NDgtanJnas4AAz41

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS1xdzVtLXZtcDMtZjU1M84AAz4v

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS1mOTg5LTNmcDktcTNyMs4AAz4U

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Server-Side Request Forgery (SSRF) GSA_kwCzR0hTQS01Zjc5LXZocjQtdncycs4AAz44

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source affected by Improper Input Validation GSA_kwCzR0hTQS01amZnLXBoeDctN2Z4Z84AAz4n

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows XML Injection GSA_kwCzR0hTQS13aDQyLThyMnctODczeM4AAz4V

packagist magento/project-community-edition, magento/community-edition
Low
over 2 years ago

Magento Open Source has Business Logic Errors Vulnerability GSA_kwCzR0hTQS0yOHZwLTM5cmYtM3Eyas4AAz4q

packagist magento/project-community-edition, magento/community-edition
Low
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS0zNTRoLWZwbXEtNjh2N84AAz4Z

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Improper Access Control GSA_kwCzR0hTQS00aDdwLTR2cTgtZzJnaM4AAyWV

packagist magento/project-community-edition, magento/community-edition
Moderate
over 2 years ago

Magento Open Source allows Incorrect Authorization GSA_kwCzR0hTQS0yd203LW1tZ2MtcXhyM84AAyWc

packagist magento/project-community-edition, magento/community-edition
High
over 2 years ago

Magento Open Source allows XML Injection GSA_kwCzR0hTQS0yNDQ0LThnajgtNmZteM4AAyWb

packagist magento/project-community-edition, magento/community-edition
High
almost 3 years ago

Magento Open Source allows Stored Cross-Site Scripting (Stored XSS) GSA_kwCzR0hTQS00dmoyLTQyNnItam0zZ84AAvWU

packagist magento/project-community-edition, magento/community-edition
Moderate
almost 3 years ago

Magento Open Source allows Improper Access Control GSA_kwCzR0hTQS01Znh4LWp3am0teDloas4AAvWb

packagist magento/project-community-edition, magento/community-edition
Moderate
about 3 years ago

Magento Open Source has Improper Access Control vulnerability GSA_kwCzR0hTQS1nbTRtLTlybTgtN3J4as4AAuWg

packagist magento/community-edition, magento/project-community-edition
Moderate
over 3 years ago

Magento Open Source allows Cross-Site Request Forgery (CSRF) GSA_kwCzR0hTQS05NHdxLTg3ZzYtOGg3N84AAqUH

packagist magento/project-community-edition, magento/community-edition
Moderate
over 3 years ago

Magento Improper Authorization vulnerability in the customers module GSA_kwCzR0hTQS1jYzN3LXIzdzgtaGZoN84AApzl

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento DOM-based Cross-Site Scripting vulnerability on mage-messages cookies GSA_kwCzR0hTQS0zOWNoLXJnMjYtZ21xNc4AAo-X

packagist magento/project-community-edition
High
over 3 years ago

Magento Violation of Secure Design Principles vulnerability in RMA PDF filename formats GSA_kwCzR0hTQS03Z2g2LWY0amgtM2Nycc4AAo-E

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Path Traversal vulnerability GSA_kwCzR0hTQS03Z3B2LXhyanItZjVoNM4AAo-L

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Improper input validation vulnerability GSA_kwCzR0hTQS1jMzhtLTk2NjgtNmoyd84AAo-D

packagist magento/project-community-edition, magento/community-edition
Moderate
over 3 years ago

Magento Insufficient Session Expiration GSA_kwCzR0hTQS00aDNwLTYzeDYtdndnMs4AAnik

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento cross-site request forgery (CSRF) vulnerability via the GraphQL API GSA_kwCzR0hTQS1oNHhjLTU3N3AtaGdqOc4AAniP

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Insufficient Session Expiration GSA_kwCzR0hTQS00amZxLWY4aGMtNzc1cc4AAnia

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento improper authorization vulnerability in the integrations module GSA_kwCzR0hTQS1jcmpjLTJ2OW0tOHc3cs4AAniu

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento stored cross-site scripting vulnerability in the admin console GSA_kwCzR0hTQS1oNXJtLW03NzItNnFjeM4AAnie

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Insecure Direct Object Reference (IDOR) in the product module GSA_kwCzR0hTQS04cGZxLWc0OHAteDd3OM4AAniY

packagist magento/project-community-edition
High
over 3 years ago

Magento stored cross-site scripting (XSS) in the customer address upload feature GSA_kwCzR0hTQS02OTg4LWc4OW0tMjd2Zs4AAniS

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Improper Access Control GSA_kwCzR0hTQS0yajZ2LTgyOWctODg1cc4AAniR

packagist magento/project-community-edition
Critical
over 3 years ago

Magento XPath Injection GSA_kwCzR0hTQS1oNDM3LXFqajktdm1xNM4AAniO

packagist magento/project-community-edition
Critical
over 3 years ago

Magento vulnerable to a file upload restriction bypass GSA_kwCzR0hTQS0yNjl3LXBxYzctNjhxOc4AAniK

packagist magento/project-community-edition
Critical
over 3 years ago

Magento OS command injection via the WebAPI GSA_kwCzR0hTQS03OTJmLWM4bXAtMmNyNc4AAnh_

packagist magento/project-community-edition
Critical
over 3 years ago

Magento 2 Community Edition RCE via Unsafe File Upload GSA_kwCzR0hTQS03cHhnLTZwODctOGM5ds4AAmmL

packagist magento/project-community-edition
Low
over 3 years ago

Magento incorrect user permissions vulnerability within the Inventory component GSA_kwCzR0hTQS0zOXJ3LTRtNjYtODJnZs4AAmmH

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento incorrect permissions vulnerability in the Integrations component GSA_kwCzR0hTQS1odmY1LTRqcjktZmdoaM4AAmmI

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento 2 Community Edition Incorrect Authorization GSA_kwCzR0hTQS1mMmczLTNjNnEtNDQ3OM4AAmmC

packagist magento/project-community-edition
Critical
over 3 years ago

Magento DOM-based Cross-site scripting vulnerability GSA_kwCzR0hTQS1nN3BjLTc5OXEtNzQzZs4AAlf2

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento path traversal vulnerability GSA_kwCzR0hTQS1mcjZmLXhtZngtcnJwcc4AAlf1

packagist magento/project-community-edition
Critical
over 3 years ago

Magento business logic error vulnerability GSA_kwCzR0hTQS01ajR3LXY4N20tOHI2Nc4AAlK_

packagist magento/project-community-edition
Critical
over 3 years ago

Magento security mitigation bypass vulnerability GSA_kwCzR0hTQS02dzI5LXg1ajQtcWhyd84AAlK8

packagist magento/project-community-edition
Critical
over 3 years ago

Magento security mitigation bypass vulnerability GSA_kwCzR0hTQS1nZmZ4LTlmMzYtcjh3cM4AAlLD

packagist magento/project-community-edition
High
over 3 years ago

Magento Signature verification bypass GSA_kwCzR0hTQS1qMnI0LTJjcjYtaDNyM84AAlKd

packagist magento/project-community-edition
High
over 3 years ago

Magento authorization bypass vulnerability GSA_kwCzR0hTQS04d203LWgycWgtZmY0Y84AAlKU

packagist magento/project-community-edition
Critical
over 3 years ago

Magento command injection vulnerability GSA_kwCzR0hTQS1jM200LWh4djktNG14as4AAlKP

packagist magento/project-community-edition
Critical
over 3 years ago

Magento command injection vulnerability GSA_kwCzR0hTQS1jNTVoLTdxNGotZzZycc4AAlKQ

packagist magento/project-community-edition
Critical
over 3 years ago

Magento Defense-in-depth security mitigation vulnerability GSA_kwCzR0hTQS01NWd2LWhmZzMtaHdqcc4AAlKV

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento Stored cross-site scripting GSA_kwCzR0hTQS00NWg0LTZnY2otNmh3ds4AAlKO

packagist magento/project-community-edition
Critical
over 3 years ago

Magento Security mitigation bypass vulnerability GSA_kwCzR0hTQS1qMmpwLTU4Z3YtZzJwZ84AAlLP

packagist magento/project-community-edition
Critical
over 3 years ago

Magento command injection vulnerability GSA_kwCzR0hTQS03MjR4LWdxaHYtOWM1eM4AAlJ-

packagist magento/project-community-edition
Critical
over 3 years ago

Magento command injection vulnerability GSA_kwCzR0hTQS00Zjd4LWdqcWMtcXFwZ84AAlKL

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento stored cross-site scripting vulnerability GSA_kwCzR0hTQS0ydzJ4LTdxZ2otNHg3OM4AAlJ8

packagist magento/project-community-edition
Moderate
over 3 years ago

Magento stored cross-site scripting vulnerability GSA_kwCzR0hTQS02ODl3LTJmOTMtMng2N84AAlKJ

packagist magento/project-community-edition
High
over 3 years ago

Magento 2 Community Edition RCE Vulnerability GSA_kwCzR0hTQS1jcnY3LXIzNTctZ3czd84AAila

packagist magento/project-community-edition
High
almost 6 years ago

Unauthenticated crypto and weak IV in Magento\Framework\Encryption MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3cXctbXhybS1jNmgy

packagist magento/project-community-edition

Filter by Severity

Moderate 50 High 23 Critical 15 Low 9