Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
H Improper Authorization	magento/community-edition>=2.4.5, <2.4.5-p13>=2.4.6-p1, <2.4.6-p11>=2.4.7-beta1, <2.4.7-p6>=2.4.8-beta1, <2.4.8-p1	Composer	24 Oct 2025
M Improper Authorization	magento/community-edition>=2.4.7-p1, <2.4.7-p2>=2.4.6-p1, <2.4.6-p7>=2.4.5-p1, <2.4.5-p9<2.4.4-p10	Composer	24 Oct 2025
M Access Control Bypass	magento/community-edition<2.4.4-p13>=2.4.5, <2.4.5-p12>=2.4.6, <2.4.6-p10>=2.4.7-beta1, <2.4.7-p5>=2.4.8-beta1, <2.4.8-beta2	Composer	24 Oct 2025
M Improper Authorization	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p8>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	24 Oct 2025
M Access Control Bypass	magento/community-edition<2.4.4-p10>=2.4.5, <2.4.5-p8>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2	Composer	24 Oct 2025
M Access Control Bypass	magento/community-edition<2.4.5-p13>=2.4.6, <2.4.6-p11>=2.4.7, <2.4.7-p6>=2.4.8-beta1, <2.4.8-p1	Composer	24 Oct 2025
M Incorrect Authorization	magento/community-edition<2.4.5-p13>=2.4.6, <2.4.6-p11>=2.4.7, <2.4.7-p6>=2.4.8-beta1, <2.4.8-p1	Composer	24 Oct 2025
H SQL Injection	admidio/admidio<4.3.17	Composer	23 Oct 2025
M Cross-site Scripting (XSS)	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	23 Oct 2025
H Incorrect Authorization	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	23 Oct 2025
M Cross-site Scripting (XSS)	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	23 Oct 2025
H Incorrect Authorization	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	23 Oct 2025
H Improper Removal of Sensitive Information Before Storage or Transfer	shopware/core<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
H Directory Traversal	shopware/core<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
M Missing Authorization	shopware/storefront<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
M Missing Authorization	shopware/core<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
M Incorrect Authorization	shopware/core<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
M Data Amplification	processwire/processwire>=0.0.0	Composer	22 Oct 2025
M Cross-site Scripting (XSS)	code16/sharp<9.7.0	Composer	22 Oct 2025
M Server-side Request Forgery (SSRF)	shopware/platform<6.6.10.7>=6.7.0.0-dev, <6.7.3.1	Composer	22 Oct 2025
M Server-side Request Forgery (SSRF)	shopware/core<6.6.10.7>=6.7.0.0-dev, <6.7.3.1	Composer	22 Oct 2025
M Cross-site Scripting (XSS)	tastyigniter/tastyigniter>=0.0.0	Composer	21 Oct 2025
H Incorrect Authorization	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	21 Oct 2025
M Cross-site Scripting (XSS)	mediawiki/cargo<3.8.3	Composer	20 Oct 2025
H SQL Injection	mediawiki/cargo<3.8.4	Composer	20 Oct 2025
M Incomplete List of Disallowed Inputs	prestashop/ps_checkout<5.0.5>=7.3.1.0, <7.4.4.1>=8.3.1.0, <8.4.4.1	Composer	20 Oct 2025
M Directory Traversal	prestashop/ps_checkout<5.0.5>=7.3.1.0, <7.4.4.1>=8.3.1.0, <8.4.4.1	Composer	20 Oct 2025
C Missing Authentication for Critical Function	prestashop/ps_checkout<5.0.5>=7.3.1.0, <7.4.4.1>=8.3.1.0, <8.4.4.1	Composer	20 Oct 2025
M Cross-site Scripting (XSS)	ibexa/fieldtype-richtext<4.6.25>=5.0.0, <5.0.3	Composer	20 Oct 2025
M Cross-site Scripting (XSS)	librenms/librenms<25.10.0	Composer	19 Oct 2025

APPLICATION

OPERATING SYSTEM