Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Server-side Request Forgery (SSRF)
magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3Composer5 Mar 2025
  • M
Server-side Request Forgery (SSRF)
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • H
XML Injection
magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2Composer5 Mar 2025
  • H
XML Injection
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
XML Injection
magento/community-edition>=2.4.4-p1, <2.4.4-p5>=2.4.5-p1, <2.4.5-p4>=2.4.6-p1, <2.4.6-p2Composer5 Mar 2025
  • M
XML Injection
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • H
Improper Input Validation
magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2Composer5 Mar 2025
  • H
Improper Input Validation
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • H
SQL Injection
magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2Composer5 Mar 2025
  • H
SQL Injection
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
Server-side Request Forgery (SSRF)
magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3Composer5 Mar 2025
  • M
Server-side Request Forgery (SSRF)
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
Improper Input Validation
magento/community-edition>=2.4.4-p1, <2.4.4-p4>=2.4.5-p1, <2.4.5-p3Composer5 Mar 2025
  • M
Improper Input Validation
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • H
Server-side Request Forgery (SSRF)
magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2Composer5 Mar 2025
  • H
Server-side Request Forgery (SSRF)
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • C
Cross-site Scripting (XSS)
magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2Composer5 Mar 2025
  • C
Cross-site Scripting (XSS)
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
Cross-site Request Forgery (CSRF)
magento/community-edition>=2.4.4-p1, <2.4.4-p7>=2.4.5-p1, <2.4.5-p6>=2.4.6-p1, <2.4.6-p4Composer5 Mar 2025
  • M
Cross-site Request Forgery (CSRF)
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • L
Incorrect Authorization
magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2Composer5 Mar 2025
  • L
Incorrect Authorization
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • C
Cross-site Scripting (XSS)
magento/community-edition>=2.4.4-p1, <2.4.4-p7>=2.4.5-p1, <2.4.5-p6>=2.4.6-p1, <2.4.6-p4Composer5 Mar 2025
  • C
Cross-site Scripting (XSS)
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
Access Control Bypass
magento/community-edition>=2.4.4-p1, <2.4.4-p3>=2.4.5-p1, <2.4.5-p2Composer5 Mar 2025
  • M
Access Control Bypass
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • M
Missing Support for Integrity Check
magento/community-edition>=2.4.5-p1, <2.4.5-p3>=2.4.4-p1, <2.4.4-p4Composer5 Mar 2025
  • M
Missing Support for Integrity Check
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • H
Improper Authorization
magento/project-community-edition>=0.0.0Composer5 Mar 2025
  • H
Improper Authorization
magento/community-edition>=2.4.4-p1, <2.4.4-p6>=2.4.5-p1, <2.4.5-p5>=2.4.6-p1, <2.4.6-p3>=2.4.7-beta1, <2.4.7-beta2Composer5 Mar 2025