Magento

Magento

221 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2020-9577

  • EPSS 0.32%
  • Veröffentlicht 26.06.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:40:54

Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure .

9.8

CVE-2020-9578

  • EPSS 3.23%
  • Veröffentlicht 26.06.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:40:54

Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.

9.8

CVE-2020-9579

  • EPSS 6.22%
  • Veröffentlicht 26.06.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:40:54

Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.

9.8

CVE-2020-9580

  • EPSS 6.22%
  • Veröffentlicht 26.06.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:40:54

Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.

6.1

CVE-2020-9581

  • EPSS 0.32%
  • Veröffentlicht 26.06.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:40:54

Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.

9.8

CVE-2020-9582

  • EPSS 3.23%
  • Veröffentlicht 26.06.2020 21:15:16
  • Zuletzt bearbeitet 21.11.2024 05:40:54

Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.

7.8

CVE-2020-3719

  • EPSS 1.51%
  • Veröffentlicht 29.01.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 05:31:37

Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have an sql injection vulnerability. Successful exploitation could lead to sensitive information disclosure.

6.1

CVE-2020-3758

  • EPSS 0.28%
  • Veröffentlicht 29.01.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 05:31:41

Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.

6.1

CVE-2020-3715

  • EPSS 0.27%
  • Veröffentlicht 29.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 05:31:37

Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.

10

CVE-2020-3716

  • EPSS 17.34%
  • Veröffentlicht 29.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 05:31:37

Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.