magento/community-edition vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2023-29291Mediummagento/community-edition: Magento Open Source allows Server-Side Request Forgery (SSRF)CVE-2023-29292Mediummagento/community-edition: Magento Open Source allows Server-Side Request Forgery (SSRF)CVE-2023-29290Mediummagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-29293Lowmagento/community-edition: Magento Open Source affected by Improper Input ValidationCVE-2023-29294Lowmagento/community-edition: Magento Open Source has Business Logic Errors VulnerabilityCVE-2023-22248Mediummagento/community-edition: Magento Open Source affected by Improper Input ValidationCVE-2023-29287Mediummagento/community-edition: Magento Open Source allows Information ExposureCVE-2023-29295Lowmagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-29296Lowmagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-29289Mediummagento/community-edition: Magento Open Source allows XML InjectionCVE-2023-29288Mediummagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-22251Mediummagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-22247Highmagento/community-edition: Magento Open Source allows XML InjectionCVE-2023-22250Mediummagento/community-edition: Magento Open Source allows Improper Access ControlCVE-2022-42344Highmagento/community-edition: Magento Improper input validation vulnerabilityCVE-2022-35689Mediummagento/community-edition: Magento Open Source allows Improper Access ControlCVE-2022-35698Highmagento/community-edition: Magento Open Source allows Stored Cross-Site Scripting (Stored XSS)CVE-2022-35692Mediummagento/community-edition: Magento Open Source has Improper Access Control vulnerabilityCVE-2022-34256Highmagento/community-edition: Magento Improper Authorization vulnerabilityCVE-2022-34255Highmagento/community-edition: Magento Improper Access Control vulnerabilityCVE-2022-34258Mediummagento/community-edition: Magento stored Cross-Site Scripting (XSS) vulnerabilityCVE-2022-34254Highmagento/community-edition: Magento Path Traversal vulnerabilityCVE-2022-34259Mediummagento/community-edition: Magento Improper Access Control vulnerabilityCVE-2022-34257Mediummagento/community-edition: Magento stored Cross-Site Scripting (XSS) vulnerabilityCVE-2022-34253Criticalmagento/community-edition: Magento XML Injection vulnerability in the Widgets Module

Stop the waste.
Protect your environment with Kodem.