magento/project-community-edition vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2022-24093Mediummagento/community-edition: Magento Open Source affected by Improper Input ValidationCVE-2021-36023Criticalmagento/project-community-edition: Magento XML Injection vulnerability in the Widgets Update LayoutCVE-2021-36036Criticalmagento/project-community-edition: Magento improper access control vulnerability within Magento's Media Gallery Upload workflowCVE-2021-36021Criticalmagento/project-community-edition: Magento affected by remote code execution vulnerability in the CMS page scheduled update featureCVE-2023-38209Mediummagento/community-edition: Magento Open Source allows Incorrect Authorization CVE-2023-38207Lowmagento/community-edition: Magento Open Source allows XML InjectionCVE-2023-38208Highmagento/community-edition: Magento Open Source allows Improper Neutralization of Special Elements UsedCVE-2023-29297Highmagento/community-edition: Magento Open Source allows Improper Neutralization of Special Elements UsedCVE-2023-29291Mediummagento/community-edition: Magento Open Source allows Server-Side Request Forgery (SSRF)CVE-2023-29292Mediummagento/community-edition: Magento Open Source allows Server-Side Request Forgery (SSRF)CVE-2023-29290Mediummagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-29293Lowmagento/community-edition: Magento Open Source affected by Improper Input ValidationCVE-2023-29294Lowmagento/community-edition: Magento Open Source has Business Logic Errors VulnerabilityCVE-2023-22248Mediummagento/community-edition: Magento Open Source affected by Improper Input ValidationCVE-2023-29287Mediummagento/community-edition: Magento Open Source allows Information ExposureCVE-2023-29295Lowmagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-29296Lowmagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-29289Mediummagento/community-edition: Magento Open Source allows XML InjectionCVE-2023-29288Mediummagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-22251Mediummagento/community-edition: Magento Open Source allows Incorrect AuthorizationCVE-2023-22247Highmagento/community-edition: Magento Open Source allows XML InjectionCVE-2023-22250Mediummagento/community-edition: Magento Open Source allows Improper Access ControlCVE-2022-35689Mediummagento/community-edition: Magento Open Source allows Improper Access ControlCVE-2022-35698Highmagento/community-edition: Magento Open Source allows Stored Cross-Site Scripting (Stored XSS)CVE-2022-35692Mediummagento/community-edition: Magento Open Source has Improper Access Control vulnerability

Stop the waste.
Protect your environment with Kodem.