Adobe ≫ Magento

121 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

5.3

CVE-2023-38251

EPSS 0.23%
Published 13.10.2023 07:15:41
Last modified 21.11.2024 08:13:11

Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earlier), 2.4.5-p4 (and earlier) and 2.4.4-p5 (and earlier) are affected by a Uncontrolled Resource Consumption vulnerability that could lead in minor application denial-of-service. Exp...

8.8

CVE-2023-38218

EPSS 0.69%
Published 13.10.2023 07:15:40
Last modified 21.11.2024 08:13:06

Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earlier), 2.4.5-p4 (and earlier) and 2.4.4-p5 (and earlier) are affected by an Incorrect Authorization . An authenticated attacker can exploit this to achieve information exposure and p...

8.7

CVE-2023-38219

EPSS 1.52%
Published 13.10.2023 07:15:40
Last modified 21.11.2024 08:13:06

Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earlier), 2.4.5-p4 (and earlier) and 2.4.4-p5 (and earlier) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject...

7.5

CVE-2023-38220

EPSS 0.15%
Published 13.10.2023 07:15:40
Last modified 21.11.2024 08:13:06

Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earlier), 2.4.5-p4 (and earlier) and 2.4.4-p5 (and earlier) are affected by an Improper Authorization vulnerability that could lead in a security feature bypass in a way that an attacke...

6.6

CVE-2023-38221

EPSS 1.41%
Published 13.10.2023 07:15:40
Last modified 21.11.2024 08:13:07

Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earlier), 2.4.5-p4 (and earlier) and 2.4.4-p5 (and earlier) are affected by an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability that co...

4.9

CVE-2023-26367

EPSS 0.33%
Published 13.10.2023 07:15:39
Last modified 21.11.2024 07:51:12

Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earlier), 2.4.5-p4 (and earlier) and 2.4.4-p5 (and earlier) are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read by an admin-privileg...

6.8

CVE-2023-26366

EPSS 0.32%
Published 13.10.2023 07:15:38
Last modified 21.11.2024 07:51:12

Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earlier), 2.4.5-p4 (and earlier) and 2.4.4-p5 (and earlier) are affected by a Server-Side Request Forgery (SSRF) vulnerability that could lead to arbitrary file system read. A high-priv...

2.7

CVE-2023-29293

EPSS 0.04%
Published 15.06.2023 19:15:11
Last modified 21.11.2024 07:56:48

Adobe Commerce versions 2.4.6 (and earlier), 2.4.5-p2 (and earlier) and 2.4.4-p3 (and earlier) are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An admin privileged attacker could leverage this...

4.3

CVE-2023-29294

EPSS 0.17%
Published 15.06.2023 19:15:11
Last modified 21.11.2024 07:56:48

Adobe Commerce versions 2.4.6 (and earlier), 2.4.5-p2 (and earlier) and 2.4.4-p3 (and earlier) are affected by a Business Logic Errors vulnerability that could result in a security feature bypass. A low-privileged attacker could leverage this vulnera...

4.3

CVE-2023-29295

EPSS 0.1%
Published 15.06.2023 19:15:11
Last modified 21.11.2024 07:56:48

Adobe Commerce versions 2.4.6 (and earlier), 2.4.5-p2 (and earlier) and 2.4.4-p3 (and earlier) are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could leverage this vuln...

<1...8910111213>