Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Server-side Request Forgery (SSRF)		magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2Composer5 Mar 2025
  • H
Server-side Request Forgery (SSRF)		magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • C
Cross-site Scripting (XSS)		magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2Composer5 Mar 2025
  • C
Cross-site Scripting (XSS)		magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
Cross-site Request Forgery (CSRF)		magento/community-edition>=2.4.4-p1, <2.4.4-p7>=2.4.5-p1, <2.4.5-p6>=2.4.6-p1, <2.4.6-p4Composer5 Mar 2025
  • M
Cross-site Request Forgery (CSRF)		magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • L
Incorrect Authorization		magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2Composer5 Mar 2025
  • L
Incorrect Authorization		magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • C
Cross-site Scripting (XSS)		magento/community-edition>=2.4.4-p1, <2.4.4-p7>=2.4.5-p1, <2.4.5-p6>=2.4.6-p1, <2.4.6-p4Composer5 Mar 2025
  • C
Cross-site Scripting (XSS)		magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
Access Control Bypass		magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2Composer5 Mar 2025
  • M
Access Control Bypass		magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
Missing Support for Integrity Check		magento/community-edition>=2.4.5-p1, <2.4.5-p3>=2.4.4-p1, <2.4.4-p4Composer5 Mar 2025
  • M
Missing Support for Integrity Check		magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • H
Improper Authorization		magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • H
Improper Authorization		magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2Composer5 Mar 2025
  • C
Malicious Package		safe-apps-list*npm5 Mar 2025
  • C
Malicious Package		huma-contracts-v2*npm5 Mar 2025
  • C
Malicious Package		int_pinterest_sfra*npm5 Mar 2025
  • C
Malicious Package		kitchensink-ui-base*npm5 Mar 2025
  • C
Malicious Package		lappsec-testpackage*npm5 Mar 2025
  • C
Malicious Package		latoken-dev*npm5 Mar 2025
  • C
Malicious Package		latoken-internal*npm5 Mar 2025
  • C
Malicious Package		latoken-main*npm5 Mar 2025
  • C
Malicious Package		latoken-test*npm5 Mar 2025
  • C
Malicious Package		link-outside-nest*npm5 Mar 2025
  • C
Malicious Package		@maheshtestorg/maheshtestpackage*npm5 Mar 2025
  • C
Malicious Package		mahesh.testpackage*npm5 Mar 2025
  • C
Malicious Package		mercury-web*npm5 Mar 2025
  • C
Malicious Package		metamask-design-tokens-tailwind*npm5 Mar 2025