magento/project-community-edition vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2024-39413Mediummagento/project-community-edition: Magento Improper Authorization vulnerabilityCVE-2024-39407Mediummagento/project-community-edition: Magento Improper Authorization vulnerabilityCVE-2024-39402Highmagento/project-community-edition: Magento OS Command ('OS Command Injection') vulnerabilityCVE-2024-39404Mediummagento/project-community-edition: Magento Improper Authorization vulnerabilityCVE-2024-39405Mediummagento/project-community-edition: Magento Improper Authorization vulnerabilityCVE-2024-39403Highmagento/project-community-edition: Magento Stored Cross-Site Scripting (XSS) vulnerability CVE-2024-39398Highmagento/project-community-edition: Magento does not properly restrict excessive authentication attemptsCVE-2024-39401Highmagento/project-community-edition: Magento OS Command ('OS Command Injection') vulnerabilityCVE-2024-39400Highmagento/project-community-edition: Magento DOM-based Cross-Site Scripting (XSS) vulnerabilityCVE-2024-39399Highmagento/project-community-edition: Magento Path Traversal vulnerabilityCVE-2024-20758Highmagento/community-edition: Magento Open Source allows Improper Input ValidationCVE-2024-20759Mediummagento/community-edition: Magento Open Source allows Cross-Site Scripting (XSS)CVE-2024-20720Highmagento/community-edition: Magento Open Source allows OS Command InjectionCVE-2024-20719Highmagento/community-edition: Magento Open Source allows Cross-Site Scripting (XSS)CVE-2024-20718Mediummagento/community-edition: Magento Open Source allows Cross-Site Request Forgery (CSRF)CVE-2024-20716Mediummagento/community-edition: Magento Open Source allows Uncontrolled Resource ConsumptionCVE-2023-38251Mediummagento/community-edition: Magento Open Source allows Uncontrolled Resource ConsumptionCVE-2023-38249Mediummagento/community-edition: Magento Open Source allows SQL InjectionCVE-2023-38250Mediummagento/community-edition: Magento Open Source allows SQL Injection CVE-2023-38218Mediummagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-38219Lowmagento/community-edition: Magento Open Source allows Cross-Site Scripting (XSS)CVE-2023-38220Mediummagento/community-edition: Magento Open Source allows Improper AuthorizationCVE-2023-26367Mediummagento/community-edition: Magento Open Source has Improper Input Validation VulnerabilityCVE-2023-26366Mediummagento/community-edition: Magento Open Source allows Server-Side Request Forgery (SSRF)CVE-2023-38221Mediummagento/community-edition: Magento Open Source allows SQL Injection

Stop the waste.
Protect your environment with Kodem.