magento/community-edition vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2024-39417Mediummagento/project-community-edition: Magento Improper Authorization leads to Security feature bypassCVE-2024-39413Mediummagento/project-community-edition: Magento Improper Authorization vulnerabilityCVE-2024-39406Mediummagento/community-edition: Magento Open Source Path Traversal vulnerabilityCVE-2024-39407Mediummagento/project-community-edition: Magento Improper Authorization vulnerabilityCVE-2024-39402Highmagento/project-community-edition: Magento OS Command ('OS Command Injection') vulnerabilityCVE-2024-39404Mediummagento/project-community-edition: Magento Improper Authorization vulnerabilityCVE-2024-39405Mediummagento/project-community-edition: Magento Improper Authorization vulnerabilityCVE-2024-39403Highmagento/project-community-edition: Magento Stored Cross-Site Scripting (XSS) vulnerability CVE-2024-39398Highmagento/project-community-edition: Magento does not properly restrict excessive authentication attemptsCVE-2024-39401Highmagento/project-community-edition: Magento OS Command ('OS Command Injection') vulnerabilityCVE-2024-39400Highmagento/project-community-edition: Magento DOM-based Cross-Site Scripting (XSS) vulnerabilityCVE-2024-39399Highmagento/project-community-edition: Magento Path Traversal vulnerabilityCVE-2024-34111Mediummagento/community-edition: Magento Open Source Server-Side Request Forgery (SSRF) vulnerabilityCVE-2024-34102Criticalmagento/community-edition: Magento Open Source affected by an Improper Restriction of XML External Entity Reference ('XXE')…CVE-2024-34105Mediummagento/community-edition: Magento Open Source Cross-Site Scripting (XSS) vulnerabilityCVE-2024-34107Mediummagento/community-edition: Magento Open Source Improper Access Control vulnerabilityCVE-2024-34106Mediummagento/community-edition: Magento Open Source Incorrect Authorization vulnerabilityCVE-2024-34103Criticalmagento/community-edition: Magento Open Source Improper Authentication vulnerabilityCVE-2024-34104Highmagento/community-edition: Magento Open Source Improper Authorization vulnerabilityGHSA-8J7C-682X-R9F2Criticalmagento/community-edition: Magento RCE,XSS and other vulnerabilitiesGHSA-MCFC-67VM-J568Mediummagento/community-edition: Magento Cross-Site Scripting (XSS) vulnerabilityGHSA-5GMH-85X8-5CX7Criticalmagento/community-edition: Magento remote code execution (RCE), Cross-Site Scripting (XSS) and other vulnerabilitiesGHSA-CV25-3PXR-4Q7XCriticalmagento/community-edition: Magento Open Source Security Advisory: Patch SUPEE-10975GHSA-26HQ-7286-MG8FCriticalmagento/community-edition: Magento Patch SUPEE-9652 - Remote Code Execution using mail vulnerabilityGHSA-6WM4-3RJJ-C8XXCriticalmagento/community-edition: Magento Security enhancements that help close RCE,XSS,CSRF and other vulnerabilities

Stop the waste.
Protect your environment with Kodem.