Adobe

Magento

146 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8

CVE-2026-21291

  • EPSS 0.07%
  • Veröffentlicht 11.03.2026 02:19:24
  • Zuletzt bearbeitet 11.03.2026 18:21:44

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious scripts int...

5.5

CVE-2026-21293

  • EPSS 0.06%
  • Veröffentlicht 11.03.2026 02:19:24
  • Zuletzt bearbeitet 11.03.2026 17:51:04

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in a Security feature bypass. A high-privileged attacker could ...

5.3

CVE-2026-21282

  • EPSS 0.26%
  • Veröffentlicht 11.03.2026 02:19:23
  • Zuletzt bearbeitet 11.03.2026 18:22:04

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by an Improper Input Validation vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerab...

5.3

CVE-2026-21286

  • EPSS 0.07%
  • Veröffentlicht 11.03.2026 02:19:22
  • Zuletzt bearbeitet 11.03.2026 18:21:53

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerabili...

5.5

CVE-2026-21294

  • EPSS 0.06%
  • Veröffentlicht 11.03.2026 02:19:21
  • Zuletzt bearbeitet 11.03.2026 18:03:36

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in a Security feature bypass. A high-privileged attacker could ...

8.1

CVE-2026-21284

  • EPSS 0.1%
  • Veröffentlicht 11.03.2026 02:19:20
  • Zuletzt bearbeitet 11.03.2026 18:22:00

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious scripts int...

4.3

CVE-2026-21297

  • EPSS 0.05%
  • Veröffentlicht 11.03.2026 02:19:19
  • Zuletzt bearbeitet 11.03.2026 18:08:06

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage th...

4.7

CVE-2026-21359

  • EPSS 0.07%
  • Veröffentlicht 11.03.2026 02:19:18
  • Zuletzt bearbeitet 11.03.2026 18:08:47

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerabili...

7.5

CVE-2026-21309

  • EPSS 0.13%
  • Veröffentlicht 11.03.2026 02:19:17
  • Zuletzt bearbeitet 11.03.2026 18:08:18

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerabili...

5.4

CVE-2026-21292

  • EPSS 0.03%
  • Veröffentlicht 11.03.2026 02:19:16
  • Zuletzt bearbeitet 11.03.2026 18:21:41

Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15, 2.4.4-p16 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker attacker to inject malicious scr...