magento/project-community-edition vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2020-9587Highmagento/community-edition: Magento authorization bypass vulnerabilityCVE-2020-9583Criticalmagento/community-edition: Magento command injection vulnerabilityCVE-2020-9582Criticalmagento/community-edition: Magento command injection vulnerabilityCVE-2020-9584Mediummagento/community-edition: Magento Stored cross-site scriptingCVE-2020-9580Criticalmagento/community-edition: Magento Security mitigation bypass vulnerabilityCVE-2020-9576Criticalmagento/community-edition: Magento command injection vulnerabilityCVE-2020-9577Mediummagento/core: Magento stored cross-site scripting vulnerabilityCVE-2020-9578Criticalmagento/community-edition: Magento command injection vulnerabilityCVE-2020-9581Mediummagento/community-edition: Magento stored cross-site scripting vulnerabilityCVE-2019-8114Highmagento/community-edition: Magento 2 Community Edition RCE VulnerabilityCVE-2016-6485Highmagento/community-edition: Unauthenticated crypto and weak IV in Magento\Framework\Encryption

Stop the waste.
Protect your environment with Kodem.