Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
C Malicious Package	adobe-commerce-magento*	npm	7 May 2025
H Cross-site Scripting (XSS)	cardgate/magento2>=0.0.0	Composer	27 Dec 2020
H User Impersonation	cardgate/magento2<2.0.30	Composer	25 Feb 2020
M Information Exposure	fastly/magento2<1.2.26	Composer	25 Apr 2024
M Information Exposure	klaviyo/magento2-extension>=1.0.0, <3.0.0	Composer	27 May 2021
M Information Exposure	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
C Command Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p7>=2.4.5-p1, <2.4.5-p6>=2.4.6-p1, <2.4.6-p4	Composer	5 Mar 2025
H SQL Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
H Incorrect Authorization	magento/community-edition>=2.4.4-p1, <2.4.4-p5>=2.4.5-p1, <2.4.5-p4>=2.4.6-p1, <2.4.6-p2	Composer	5 Mar 2025
H SQL Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
M Cross-site Scripting (XSS)	magento/community-edition>=0.0.0	Composer	5 Mar 2025
H XML Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
H Incorrect Authorization	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
H Incorrect Authorization	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
C Improper Input Validation	magento/community-edition>=2.4.4-p1, <2.4.4-p8>=2.4.5-p1, <2.4.5-p7>=2.4.6-p1, <2.4.6-p5>=2.4.7-beta1, <2.4.7	Composer	5 Mar 2025
C Command Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p5>=2.4.5-p1, <2.4.5-p4>=2.4.6-p1, <2.4.6-p2	Composer	5 Mar 2025
C Improper Neutralization of Special Elements Used in a Template Engine	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
M Access Control Bypass	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
M Incorrect Authorization	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
M Incorrect Authorization	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
M Incorrect Authorization	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
M Denial of Service (DoS)	magento/community-edition>=2.4.4-p1, <2.4.4-p7>=2.4.5-p1, <2.4.5-p6>=2.4.6-p1, <2.4.6-p4	Composer	5 Mar 2025
M Denial of Service (DoS)	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
C Cross-site Scripting (XSS)	magento/community-edition>=2.4.4-p1, <2.4.4-p8>=2.4.5-p1, <2.4.5-p7>=2.4.6-p1, <2.4.6-p5>=2.4.7-beta1, <2.4.7	Composer	5 Mar 2025
M Server-side Request Forgery (SSRF)	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
H XML Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2	Composer	5 Mar 2025
M XML Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p5>=2.4.5-p1, <2.4.5-p4>=2.4.6-p1, <2.4.6-p2	Composer	5 Mar 2025
H Improper Input Validation	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
H SQL Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
M Server-side Request Forgery (SSRF)	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025

APPLICATION

OPERATING SYSTEM