Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
M Server-side Request Forgery (SSRF)	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
M Server-side Request Forgery (SSRF)	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
H XML Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2	Composer	5 Mar 2025
H XML Injection	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
M XML Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p5>=2.4.5-p1, <2.4.5-p4>=2.4.6-p1, <2.4.6-p2	Composer	5 Mar 2025
M XML Injection	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
H Improper Input Validation	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
H Improper Input Validation	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
H SQL Injection	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
H SQL Injection	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
M Server-side Request Forgery (SSRF)	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
M Server-side Request Forgery (SSRF)	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
M Improper Input Validation	magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3	Composer	5 Mar 2025
M Improper Input Validation	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
H Server-side Request Forgery (SSRF)	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
H Server-side Request Forgery (SSRF)	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
C Cross-site Scripting (XSS)	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025
C Cross-site Scripting (XSS)	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
M Cross-site Request Forgery (CSRF)	magento/community-edition>=2.4.4-p1, <2.4.4-p7>=2.4.5-p1, <2.4.5-p6>=2.4.6-p1, <2.4.6-p4	Composer	5 Mar 2025
M Cross-site Request Forgery (CSRF)	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
L Incorrect Authorization	magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2	Composer	5 Mar 2025
L Incorrect Authorization	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
C Cross-site Scripting (XSS)	magento/community-edition>=2.4.4-p1, <2.4.4-p7>=2.4.5-p1, <2.4.5-p6>=2.4.6-p1, <2.4.6-p4	Composer	5 Mar 2025
C Cross-site Scripting (XSS)	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
M Access Control Bypass	magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2	Composer	5 Mar 2025
M Access Control Bypass	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
M Missing Support for Integrity Check	magento/community-edition>=2.4.5-p1, <2.4.5-p3>=2.4.4-p1, <2.4.4-p4	Composer	5 Mar 2025
M Missing Support for Integrity Check	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
H Improper Authorization	magento/project-community-edition>=0.0.0	Composer	5 Mar 2025
H Improper Authorization	magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2	Composer	5 Mar 2025

APPLICATION

OPERATING SYSTEM