| 0 |
| url |
VCID-141w-faqu-w3ay |
| vulnerability_id |
VCID-141w-faqu-w3ay |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on integrity. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45130, GHSA-v3v6-jfvw-m576
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-141w-faqu-w3ay |
|
| 1 |
| url |
VCID-158t-bqnb-83d4 |
| vulnerability_id |
VCID-158t-bqnb-83d4 |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary file system read. An admin attacker could exploit this vulnerability to gain access to files and directories that are outside the restricted directory. Exploitation of this issue does not require user interaction and scope is changed. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39406, GHSA-6pxh-2557-5cj5
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-158t-bqnb-83d4 |
|
| 2 |
| url |
VCID-16es-u6cy-u3g8 |
| vulnerability_id |
VCID-16es-u6cy-u3g8 |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A high-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on confidentiality. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45149, GHSA-w7rg-7wq2-pjrw
|
| risk_score |
1.4 |
| exploitability |
0.5 |
| weighted_severity |
2.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-16es-u6cy-u3g8 |
|
| 3 |
| url |
VCID-1mpb-gzr2-53ar |
| vulnerability_id |
VCID-1mpb-gzr2-53ar |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on integrity. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45121, GHSA-2qhq-fw98-h6wg
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1mpb-gzr2-53ar |
|
| 4 |
| url |
VCID-1vq9-br2m-dbby |
| vulnerability_id |
VCID-1vq9-br2m-dbby |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24438, GHSA-8884-7rm9-mrx4
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1vq9-br2m-dbby |
|
| 5 |
| url |
VCID-313z-h2v4-c3fr |
| vulnerability_id |
VCID-313z-h2v4-c3fr |
| summary |
Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in Privilege escalation. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24436, GHSA-ghpr-6qhr-rpp8
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-313z-h2v4-c3fr |
|
| 6 |
| url |
VCID-3a8p-9krx-23e8 |
| vulnerability_id |
VCID-3a8p-9krx-23e8 |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized access affecting Confidentiality and Integrity. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24411, GHSA-36hw-x3cc-m258
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3a8p-9krx-23e8 |
|
| 7 |
| url |
VCID-3w11-7use-6kfv |
| vulnerability_id |
VCID-3w11-7use-6kfv |
| summary |
Adobe Commerce versions 2.4.4-p1 (and earlier) and 2.4.5 (and earlier) are affected by a Stored Cross-site Scripting vulnerability. Exploitation of this issue does not require user interaction and could result in a post-authentication arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
10.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
|
| 1 |
| value |
7.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
| reference_url |
https://helpx.adobe.com/security/products/magento/apsb22-48.html |
| reference_id |
apsb22-48.html |
| reference_type |
|
| scores |
| 0 |
| value |
10 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
|
| 1 |
| value |
10.0 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
|
| 2 |
| value |
7.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-04-23T13:07:24Z/ |
|
|
| url |
https://helpx.adobe.com/security/products/magento/apsb22-48.html |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 1 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 2 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 9 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 10 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 11 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 12 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 13 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 14 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 15 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 16 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 17 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 18 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 19 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 20 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 21 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 22 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 23 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 24 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 25 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 26 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 27 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 28 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 29 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 30 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 31 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 32 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 33 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 34 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 35 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 36 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 37 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 38 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 39 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 40 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 41 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 42 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 43 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 44 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 45 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 46 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 47 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 48 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 49 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 50 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 51 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 52 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 53 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 54 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 55 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 56 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p2 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p1 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 14 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 15 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 16 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 17 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 42 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 43 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 44 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 45 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 46 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 47 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 48 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 49 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 50 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 51 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 52 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 53 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 54 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p1 |
|
|
| aliases |
CVE-2022-35698, GHSA-4vj2-426r-jm3g
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3w11-7use-6kfv |
|
| 8 |
| url |
VCID-3ydj-usv4-47fq |
| vulnerability_id |
VCID-3ydj-usv4-47fq |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features and perform minor integrity changes on behalf of a user. The vulnerability could be exploited by tricking a victim into clicking a link or loading a page that submits a malicious request. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
| reference_url |
https://helpx.adobe.com/security/products/magento/apsb24-61.html |
| reference_id |
apsb24-61.html |
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-14T14:09:47Z/ |
|
|
| url |
https://helpx.adobe.com/security/products/magento/apsb24-61.html |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39410, GHSA-4323-f82v-f6jr
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3ydj-usv4-47fq |
|
| 9 |
| url |
VCID-4b5p-wqtj-7kbe |
| vulnerability_id |
VCID-4b5p-wqtj-7kbe |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features and perform minor integrity changes on behalf of a user. The vulnerability could be exploited by tricking a victim into clicking a link or loading a page that submits a malicious request. Exploitation of this issue requires user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39409, GHSA-rf4q-m23c-7q8r
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4b5p-wqtj-7kbe |
|
| 10 |
| url |
VCID-4h6z-sxux-1fc8 |
| vulnerability_id |
VCID-4h6z-sxux-1fc8 |
| summary |
Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4 |
| purl |
pkg:composer/magento/community-edition@2.4.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 20 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 21 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 22 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 23 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 24 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 25 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 26 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 27 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 28 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 29 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 30 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 31 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 32 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 33 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 34 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 35 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 36 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 37 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 38 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 39 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 40 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 41 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 42 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 43 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 44 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 45 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 46 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 47 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 48 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 49 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 50 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 51 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 52 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 53 |
| vulnerability |
VCID-ebf6-hmqh-77ae |
|
| 54 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 55 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 56 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 57 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 58 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 59 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 60 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 61 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 62 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 63 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 64 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 65 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 66 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 67 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 68 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 69 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 70 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 71 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 72 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 73 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 74 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 75 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 76 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 77 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 78 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 79 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 80 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 81 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 82 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 83 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 84 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 85 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 86 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 87 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 88 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 89 |
| vulnerability |
VCID-p7w3-uwrr-w3gv |
|
| 90 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 91 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 92 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 93 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 94 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 95 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 96 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 97 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 98 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 99 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 100 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 101 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 102 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 103 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 104 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 105 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 106 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 107 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 108 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 109 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 110 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 111 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 112 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 113 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 114 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 115 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 116 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 117 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 118 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 119 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 120 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 121 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 122 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 123 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 124 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 125 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 126 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 127 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 128 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 129 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 130 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 131 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 132 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 133 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 134 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 135 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5 |
| purl |
pkg:composer/magento/community-edition@2.4.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 42 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 43 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 44 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 45 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 46 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 47 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 48 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 49 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 50 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 51 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 52 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 53 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 54 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5 |
|
|
| aliases |
CVE-2022-34257, GHSA-rg7p-wmgj-f374
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4h6z-sxux-1fc8 |
|
| 11 |
| url |
VCID-4nqq-nrne-17a2 |
| vulnerability_id |
VCID-4nqq-nrne-17a2 |
| summary |
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. Exploitation of this issue requires user interaction in that a victim must browse to the page containing the vulnerable field. Scope is changed. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-54266, GHSA-pcrx-r49h-x2w5
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4nqq-nrne-17a2 |
|
| 12 |
| url |
VCID-53sd-5nuj-e7d9 |
| vulnerability_id |
VCID-53sd-5nuj-e7d9 |
| summary |
Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be exploited by a low-privileged attacker to inject malicious scripts into vulnerable form fields. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. Exploitation of this issue requires user interaction in that a victim must browse to the page containing the vulnerable field. Scope is changed. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.4-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 1 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 2 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 9 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 10 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 11 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 12 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 13 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 14 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 15 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 16 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 17 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 18 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 19 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 20 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 21 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 22 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 23 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 24 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 25 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 26 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 27 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 28 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 29 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 30 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 31 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 32 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 33 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 34 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 35 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 36 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 37 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 38 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 39 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 40 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 41 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 42 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 43 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 44 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 45 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 46 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 47 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 48 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 49 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 50 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 51 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 52 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 53 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 54 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 55 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 56 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| aliases |
CVE-2025-49557, GHSA-8mq8-c243-2335
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-53sd-5nuj-e7d9 |
|
| 13 |
| url |
VCID-549e-3kmc-cyfw |
| vulnerability_id |
VCID-549e-3kmc-cyfw |
| summary |
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access, leading to both confidentiality and integrity impact. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 1 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 2 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 3 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 4 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 5 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 6 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 7 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 8 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 9 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 10 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 11 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 12 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 13 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 14 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 15 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 16 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 17 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 18 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 19 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 20 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 21 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 22 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 23 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 24 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 25 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 26 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p8 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p6 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 4 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 5 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 6 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 7 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 8 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 9 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 10 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 11 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 12 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 13 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 17 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 18 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 19 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 20 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 21 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 22 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 23 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 24 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 25 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 26 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 27 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 28 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 29 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 30 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 31 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 32 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 33 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 34 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 35 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 36 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 37 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 38 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 39 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 40 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 41 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 42 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 43 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 44 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 45 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 52 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 53 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 54 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 55 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 56 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 57 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 58 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 59 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 60 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 61 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 62 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 63 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 64 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 65 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p6 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
|
| aliases |
CVE-2024-34104, GHSA-wwj3-573j-rvvm
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-549e-3kmc-cyfw |
|
| 14 |
| url |
VCID-5edy-fp8q-97fp |
| vulnerability_id |
VCID-5edy-fp8q-97fp |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24417, GHSA-g3j6-9753-8mp2
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5edy-fp8q-97fp |
|
| 15 |
| url |
VCID-6d1u-exkw-hbfu |
| vulnerability_id |
VCID-6d1u-exkw-hbfu |
| summary |
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Improper Input Validation vulnerability. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality, and integrity impact to high. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.5-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 1 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 2 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 3 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 4 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 5 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 6 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 7 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 8 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 9 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 10 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 11 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 12 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 13 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 14 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 15 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 16 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 17 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 18 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 19 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 20 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 21 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 22 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 23 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 24 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 25 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 26 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 27 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 28 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 29 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 30 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 31 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 32 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 33 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 34 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 35 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 36 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 37 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 38 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 39 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 40 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 41 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 42 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 43 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 44 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 45 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 46 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 47 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 48 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 49 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 50 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 51 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 52 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 53 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 54 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 55 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 56 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 57 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 58 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 59 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 60 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 61 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 62 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 63 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p2 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.6-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 8 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 9 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 10 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 11 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 12 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 13 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 14 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 15 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 16 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 17 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 18 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 19 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 20 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 21 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 22 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 23 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 24 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 25 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 26 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 27 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 28 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 38 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 42 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 43 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 46 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 47 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 48 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 49 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 50 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 51 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 52 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 56 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 57 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 58 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 59 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 60 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 61 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 62 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 63 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 64 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 65 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 66 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 67 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 68 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 69 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 70 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 71 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 72 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 73 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 74 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 75 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 76 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 77 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 78 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 79 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 80 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 81 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 82 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 83 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 84 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 85 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 86 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 87 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p2 |
|
|
| aliases |
CVE-2025-54236, GHSA-wh92-6q6g-px7j
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6d1u-exkw-hbfu |
|
| 16 |
| url |
VCID-78hy-q8kh-kyh7 |
| vulnerability_id |
VCID-78hy-q8kh-kyh7 |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45123, GHSA-88x2-cq34-5fwc
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-78hy-q8kh-kyh7 |
|
| 17 |
| url |
VCID-7bmk-3ab2-9ba6 |
| vulnerability_id |
VCID-7bmk-3ab2-9ba6 |
| summary |
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Incorrect Authorization vulnerability. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized access to elevated privileges that increase integrity impact to high. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-54267, GHSA-qvwr-p3hj-j6jf
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7bmk-3ab2-9ba6 |
|
| 18 |
| url |
VCID-7j68-gund-4qhp |
| vulnerability_id |
VCID-7j68-gund-4qhp |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in Privilege escalation. A low-privileged attacker could leverage this vulnerability to bypass security measures and affect confidentiality. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
7.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45132, GHSA-5f64-ppmg-cvvm
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7j68-gund-4qhp |
|
| 19 |
| url |
VCID-8gwb-c3ck-37f8 |
| vulnerability_id |
VCID-8gwb-c3ck-37f8 |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in Privilege escalation. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on integrity. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45129, GHSA-m58h-998x-66f3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8gwb-c3ck-37f8 |
|
| 20 |
| url |
VCID-9gb1-p5qf-3kd2 |
| vulnerability_id |
VCID-9gb1-p5qf-3kd2 |
| summary |
Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability by manipulating the timing between the check of a resource's state and its use, allowing unauthorized write access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-49558, GHSA-wcmw-8xpp-rwfj
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9gb1-p5qf-3kd2 |
|
| 21 |
| url |
VCID-9gbf-swtt-7bhz |
| vulnerability_id |
VCID-9gbf-swtt-7bhz |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24424, GHSA-539v-w87w-w62c
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9gbf-swtt-7bhz |
|
| 22 |
| url |
VCID-a6gj-zm14-aqhq |
| vulnerability_id |
VCID-a6gj-zm14-aqhq |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on integrity and availability. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45128, GHSA-qpp7-742q-58j3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-a6gj-zm14-aqhq |
|
| 23 |
| url |
VCID-ax9q-y1rb-33b2 |
| vulnerability_id |
VCID-ax9q-y1rb-33b2 |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and have a low impact on integrity. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45124, GHSA-w3p2-pc3h-69wv
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ax9q-y1rb-33b2 |
|
| 24 |
| url |
VCID-bfp1-cndf-d7d7 |
| vulnerability_id |
VCID-bfp1-cndf-d7d7 |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 (and earlier) are affected by a Server-Side Request Forgery (SSRF) vulnerability that could lead to arbitrary file system read. An admin-privilege authenticated attacker can force the application to make arbitrary requests via injection of arbitrary URLs. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45119, GHSA-g9fm-wc6h-pvgj
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bfp1-cndf-d7d7 |
|
| 25 |
| url |
VCID-bftg-2sea-57cv |
| vulnerability_id |
VCID-bftg-2sea-57cv |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and modify minor information. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39419, GHSA-74w7-cr4v-wf2v
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bftg-2sea-57cv |
|
| 26 |
| url |
VCID-bvfd-gs5b-dyg7 |
| vulnerability_id |
VCID-bvfd-gs5b-dyg7 |
| summary |
Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-27190, GHSA-6wq7-cg9h-mj6q
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bvfd-gs5b-dyg7 |
|
| 27 |
| url |
VCID-c26k-zm91-eufg |
| vulnerability_id |
VCID-c26k-zm91-eufg |
| summary |
Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could be abused by an attacker to inject malicious scripts into the vulnerable endpoint. A low privileged attacker could leverage this vulnerability to read local files and to perform Stored XSS. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4 |
| purl |
pkg:composer/magento/community-edition@2.4.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 20 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 21 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 22 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 23 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 24 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 25 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 26 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 27 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 28 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 29 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 30 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 31 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 32 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 33 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 34 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 35 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 36 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 37 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 38 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 39 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 40 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 41 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 42 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 43 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 44 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 45 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 46 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 47 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 48 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 49 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 50 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 51 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 52 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 53 |
| vulnerability |
VCID-ebf6-hmqh-77ae |
|
| 54 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 55 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 56 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 57 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 58 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 59 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 60 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 61 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 62 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 63 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 64 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 65 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 66 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 67 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 68 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 69 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 70 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 71 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 72 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 73 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 74 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 75 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 76 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 77 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 78 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 79 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 80 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 81 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 82 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 83 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 84 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 85 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 86 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 87 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 88 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 89 |
| vulnerability |
VCID-p7w3-uwrr-w3gv |
|
| 90 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 91 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 92 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 93 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 94 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 95 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 96 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 97 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 98 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 99 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 100 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 101 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 102 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 103 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 104 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 105 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 106 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 107 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 108 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 109 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 110 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 111 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 112 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 113 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 114 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 115 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 116 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 117 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 118 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 119 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 120 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 121 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 122 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 123 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 124 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 125 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 126 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 127 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 128 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 129 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 130 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 131 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 132 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 133 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 134 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 135 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5 |
| purl |
pkg:composer/magento/community-edition@2.4.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 42 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 43 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 44 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 45 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 46 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 47 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 48 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 49 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 50 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 51 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 52 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 53 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 54 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5 |
|
|
| aliases |
CVE-2022-34254, GHSA-fx9g-g9q6-x3jx
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-c26k-zm91-eufg |
|
| 28 |
| url |
VCID-ctrj-y3d6-a7dv |
| vulnerability_id |
VCID-ctrj-y3d6-a7dv |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in Privilege escalation. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access. Exploitation of this issue does not require user interaction. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24434, GHSA-fppq-f2m6-xv5c
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ctrj-y3d6-a7dv |
|
| 29 |
| url |
VCID-cyy2-3rr3-jkc8 |
| vulnerability_id |
VCID-cyy2-3rr3-jkc8 |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could exploit this vulnerability to read select data. Exploitation of this issue does not require user interaction |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24421, GHSA-v6r2-425c-hfrr
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cyy2-3rr3-jkc8 |
|
| 30 |
| url |
VCID-cz7e-3kqn-gqfm |
| vulnerability_id |
VCID-cz7e-3kqn-gqfm |
| summary |
Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Access Control vulnerability that could result in Privilege escalation. An attacker with a low privilege account could leverage this vulnerability to perform an account takeover for a victim. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4 |
| purl |
pkg:composer/magento/community-edition@2.4.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 20 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 21 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 22 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 23 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 24 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 25 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 26 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 27 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 28 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 29 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 30 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 31 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 32 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 33 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 34 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 35 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 36 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 37 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 38 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 39 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 40 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 41 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 42 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 43 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 44 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 45 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 46 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 47 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 48 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 49 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 50 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 51 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 52 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 53 |
| vulnerability |
VCID-ebf6-hmqh-77ae |
|
| 54 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 55 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 56 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 57 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 58 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 59 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 60 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 61 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 62 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 63 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 64 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 65 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 66 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 67 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 68 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 69 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 70 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 71 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 72 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 73 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 74 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 75 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 76 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 77 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 78 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 79 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 80 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 81 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 82 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 83 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 84 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 85 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 86 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 87 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 88 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 89 |
| vulnerability |
VCID-p7w3-uwrr-w3gv |
|
| 90 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 91 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 92 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 93 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 94 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 95 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 96 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 97 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 98 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 99 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 100 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 101 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 102 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 103 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 104 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 105 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 106 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 107 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 108 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 109 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 110 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 111 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 112 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 113 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 114 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 115 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 116 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 117 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 118 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 119 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 120 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 121 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 122 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 123 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 124 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 125 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 126 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 127 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 128 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 129 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 130 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 131 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 132 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 133 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 134 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 135 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5 |
| purl |
pkg:composer/magento/community-edition@2.4.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 42 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 43 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 44 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 45 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 46 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 47 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 48 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 49 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 50 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 51 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 52 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 53 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 54 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5 |
|
|
| aliases |
CVE-2022-34255, GHSA-x95x-f4g9-mm85
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cz7e-3kqn-gqfm |
|
| 31 |
| url |
VCID-d9zc-rh9p-4bde |
| vulnerability_id |
VCID-d9zc-rh9p-4bde |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass allowing read only access. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized access. Exploitation of this issue requires user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24429, GHSA-656q-fx2w-8ccv
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-d9zc-rh9p-4bde |
|
| 32 |
| url |
VCID-dktm-v3jw-f7de |
| vulnerability_id |
VCID-dktm-v3jw-f7de |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could lead to a security feature bypass. An attacker could exploit this vulnerability to alter a condition between the check and the use of a resource, having a low impact on integrity. Exploitation of this issue requires user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
| reference_url |
https://helpx.adobe.com/security/products/magento/apsb24-73.html |
| reference_id |
apsb24-73.html |
| reference_type |
|
| scores |
| 0 |
| value |
3.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-10T14:01:07Z/ |
|
|
| url |
https://helpx.adobe.com/security/products/magento/apsb24-73.html |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45120, GHSA-47jp-46c9-25vf
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dktm-v3jw-f7de |
|
| 33 |
| url |
VCID-dsy7-gm7v-tqc8 |
| vulnerability_id |
VCID-dsy7-gm7v-tqc8 |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39415, GHSA-gj93-84g5-mcjq
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| url |
VCID-dytj-h56v-bke9 |
| vulnerability_id |
VCID-dytj-h56v-bke9 |
| summary |
Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in Privilege escalation. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized access to modify limited fields. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24435, GHSA-82p4-55gj-956p
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dytj-h56v-bke9 |
|
| 35 |
| url |
VCID-e2t8-b5yy-zkhn |
| vulnerability_id |
VCID-e2t8-b5yy-zkhn |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An admin attacker could leverage this vulnerability to bypass security measures and have a low impact on integrity. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
2.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45135, GHSA-8pxg-gcp4-57ww
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e2t8-b5yy-zkhn |
|
| 36 |
| url |
VCID-eban-ja9z-f7ep |
| vulnerability_id |
VCID-eban-ja9z-f7ep |
| summary |
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to gain unauthorized access or perform actions with the privileges of another user. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 1 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 2 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 3 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 4 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 5 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 6 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 7 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 8 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 9 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 10 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 11 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 12 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 13 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 14 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 15 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 16 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 17 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 18 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 19 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 20 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 21 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 22 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 23 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 24 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 25 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 26 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p8 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p6 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 4 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 5 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 6 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 7 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 8 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 9 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 10 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 11 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 12 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 13 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 17 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 18 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 19 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 20 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 21 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 22 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 23 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 24 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 25 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 26 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 27 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 28 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 29 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 30 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 31 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 32 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 33 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 34 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 35 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 36 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 37 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 38 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 39 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 40 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 41 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 42 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 43 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 44 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 45 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 52 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 53 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 54 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 55 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 56 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 57 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 58 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 59 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 60 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 61 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 62 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 63 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 64 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 65 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p6 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
|
| aliases |
CVE-2024-34106, GHSA-p6h9-gx5g-wg64
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-eban-ja9z-f7ep |
|
| 37 |
| url |
VCID-ebf6-hmqh-77ae |
| vulnerability_id |
VCID-ebf6-hmqh-77ae |
| summary |
Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to leak minor information of another user's account detials. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p1 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 20 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 21 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 22 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 23 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 24 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 25 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 26 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 27 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 28 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 29 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 30 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 31 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 32 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 33 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 34 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 35 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 36 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 37 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 38 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 39 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 40 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 41 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 42 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 43 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 44 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 45 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 46 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 47 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 48 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 49 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 50 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 51 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 52 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 53 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 54 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 55 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 56 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 57 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 58 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 59 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 60 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 61 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 62 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 63 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 64 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 65 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 66 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 67 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 68 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 69 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 70 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 71 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 72 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 73 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 74 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 75 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 76 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 77 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 78 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 79 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 80 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 81 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 82 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 83 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 84 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 85 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 86 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 87 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 88 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 89 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 90 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 91 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 92 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 93 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 94 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 95 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 96 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 97 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 98 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 99 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 100 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 101 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 102 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 103 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 104 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 105 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 106 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 107 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 108 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 109 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 110 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 111 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 112 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 113 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 114 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 115 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 116 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 117 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 118 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 119 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 120 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 121 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 122 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 123 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 124 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 125 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 126 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 127 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 128 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 129 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 130 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 131 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 132 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 133 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 134 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 135 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 136 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p1 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5 |
| purl |
pkg:composer/magento/community-edition@2.4.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 42 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 43 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 44 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 45 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 46 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 47 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 48 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 49 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 50 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 51 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 52 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 53 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 54 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5 |
|
|
| aliases |
CVE-2022-35692, GHSA-gm4m-9rm8-7rxj
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ebf6-hmqh-77ae |
|
| 38 |
| url |
VCID-esjc-zzqy-nycf |
| vulnerability_id |
VCID-esjc-zzqy-nycf |
| summary |
Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Information Exposure vulnerability that could result in privilege escalation. A low-privileged attacker could gain unauthorized access to sensitive information. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24408, GHSA-3cfg-w257-cgf8
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-esjc-zzqy-nycf |
|
| 39 |
| url |
VCID-eusf-bc81-9uhv |
| vulnerability_id |
VCID-eusf-bc81-9uhv |
| summary |
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Incorrect Authorization vulnerability. A low-privileged attacker could leverage this vulnerability to bypass security measures and maintain unauthorized access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-54263, GHSA-69x9-xp2j-w8g8
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-eusf-bc81-9uhv |
|
| 40 |
| url |
VCID-eygz-u15g-mkgq |
| vulnerability_id |
VCID-eygz-u15g-mkgq |
| summary |
Adobe Commerce versions 2.4.3-p1 (and earlier) and 2.3.7-p2 (and earlier) are affected by an improper input validation vulnerability. Exploitation of this issue does not require user interaction and could result in a post-authentication arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
| reference_url |
https://helpx.adobe.com/security/products/magento/apsb22-13.html |
| reference_id |
apsb22-13.html |
| reference_type |
|
| scores |
| 0 |
| value |
7.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
|
| 2 |
| value |
6.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-26T21:51:54Z/ |
|
|
| url |
https://helpx.adobe.com/security/products/magento/apsb22-13.html |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p1 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 20 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 21 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 22 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 23 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 24 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 25 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 26 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 27 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 28 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 29 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 30 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 31 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 32 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 33 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 34 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 35 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 36 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 37 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 38 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 39 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 40 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 41 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 42 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 43 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 44 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 45 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 46 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 47 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 48 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 49 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 50 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 51 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 52 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 53 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 54 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 55 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 56 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 57 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 58 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 59 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 60 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 61 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 62 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 63 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 64 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 65 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 66 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 67 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 68 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 69 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 70 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 71 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 72 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 73 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 74 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 75 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 76 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 77 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 78 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 79 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 80 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 81 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 82 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 83 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 84 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 85 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 86 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 87 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 88 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 89 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 90 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 91 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 92 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 93 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 94 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 95 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 96 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 97 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 98 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 99 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 100 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 101 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 102 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 103 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 104 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 105 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 106 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 107 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 108 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 109 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 110 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 111 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 112 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 113 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 114 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 115 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 116 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 117 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 118 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 119 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 120 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 121 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 122 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 123 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 124 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 125 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 126 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 127 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 128 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 129 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 130 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 131 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 132 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 133 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 134 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 135 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 136 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p1 |
|
|
| aliases |
CVE-2022-24093, GHSA-5xmp-7wg5-x68q
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-eygz-u15g-mkgq |
|
| 41 |
| url |
VCID-faxs-pnwr-8udn |
| vulnerability_id |
VCID-faxs-pnwr-8udn |
| summary |
Adobe Commerce versions 2.4.4-p1 (and earlier) and 2.4.5 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to impact the availability of a user's minor feature. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 1 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 2 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 9 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 10 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 11 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 12 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 13 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 14 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 15 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 16 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 17 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 18 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 19 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 20 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 21 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 22 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 23 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 24 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 25 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 26 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 27 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 28 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 29 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 30 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 31 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 32 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 33 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 34 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 35 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 36 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 37 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 38 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 39 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 40 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 41 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 42 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 43 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 44 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 45 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 46 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 47 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 48 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 49 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 50 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 51 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 52 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 53 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 54 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 55 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 56 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p2 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p1 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 14 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 15 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 16 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 17 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 42 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 43 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 44 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 45 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 46 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 47 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 48 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 49 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 50 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 51 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 52 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 53 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 54 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p1 |
|
|
| aliases |
CVE-2022-35689, GHSA-5fxx-jwjm-x9hj
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-faxs-pnwr-8udn |
|
| 42 |
| url |
VCID-ferd-u8gt-akds |
| vulnerability_id |
VCID-ferd-u8gt-akds |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to a security feature bypass. An unauthenticated attacker could exploit this vulnerability to modify files that are stored outside the restricted directory. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24406, GHSA-954p-ff72-327w
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ferd-u8gt-akds |
|
| 43 |
| url |
VCID-fqkf-67fw-cyb8 |
| vulnerability_id |
VCID-fqkf-67fw-cyb8 |
| summary |
Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in a security feature bypass. An attacker could leverage this vulnerability to modify limited data. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-49559, GHSA-h4f4-gv6h-x824
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fqkf-67fw-cyb8 |
|
| 44 |
| url |
VCID-frhp-vgpt-g7am |
| vulnerability_id |
VCID-frhp-vgpt-g7am |
| summary |
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. An attacker could exploit this vulnerability to gain unauthorized access or elevated privileges within the application. Exploitation of this issue does not require user interaction, but attack complexity is high. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
9.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 1 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 2 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 3 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 4 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 5 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 6 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 7 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 8 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 9 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 10 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 11 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 12 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 13 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 14 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 15 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 16 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 17 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 18 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 19 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 20 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 21 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 22 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 23 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 24 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 25 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 26 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p8 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p6 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 4 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 5 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 6 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 7 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 8 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 9 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 10 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 11 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 12 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 13 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 17 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 18 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 19 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 20 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 21 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 22 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 23 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 24 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 25 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 26 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 27 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 28 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 29 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 30 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 31 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 32 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 33 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 34 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 35 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 36 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 37 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 38 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 39 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 40 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 41 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 42 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 43 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 44 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 45 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 52 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 53 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 54 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 55 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 56 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 57 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 58 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 59 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 60 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 61 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 62 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 63 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 64 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 65 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p6 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
|
| aliases |
CVE-2024-34103, GHSA-f7q4-9gwv-6774
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-frhp-vgpt-g7am |
|
| 45 |
| url |
VCID-fs2p-2pcw-pkbg |
| vulnerability_id |
VCID-fs2p-2pcw-pkbg |
| summary |
Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker with admin privileges to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4 |
| purl |
pkg:composer/magento/community-edition@2.4.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 20 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 21 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 22 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 23 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 24 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 25 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 26 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 27 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 28 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 29 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 30 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 31 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 32 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 33 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 34 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 35 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 36 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 37 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 38 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 39 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 40 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 41 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 42 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 43 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 44 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 45 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 46 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 47 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 48 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 49 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 50 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 51 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 52 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 53 |
| vulnerability |
VCID-ebf6-hmqh-77ae |
|
| 54 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 55 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 56 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 57 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 58 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 59 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 60 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 61 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 62 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 63 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 64 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 65 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 66 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 67 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 68 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 69 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 70 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 71 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 72 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 73 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 74 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 75 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 76 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 77 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 78 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 79 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 80 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 81 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 82 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 83 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 84 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 85 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 86 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 87 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 88 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 89 |
| vulnerability |
VCID-p7w3-uwrr-w3gv |
|
| 90 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 91 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 92 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 93 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 94 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 95 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 96 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 97 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 98 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 99 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 100 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 101 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 102 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 103 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 104 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 105 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 106 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 107 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 108 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 109 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 110 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 111 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 112 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 113 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 114 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 115 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 116 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 117 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 118 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 119 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 120 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 121 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 122 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 123 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 124 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 125 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 126 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 127 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 128 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 129 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 130 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 131 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 132 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 133 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 134 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 135 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5 |
| purl |
pkg:composer/magento/community-edition@2.4.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 42 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 43 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 44 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 45 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 46 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 47 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 48 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 49 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 50 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 51 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 52 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 53 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 54 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5 |
|
|
| aliases |
CVE-2022-34258, GHSA-5m55-g8pv-x8ww
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fs2p-2pcw-pkbg |
|
| 46 |
| url |
VCID-gac9-1nnp-67cc |
| vulnerability_id |
VCID-gac9-1nnp-67cc |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could result in a security feature bypass. An attacker could exploit this race condition to alter a condition after it has been checked but before it is used, potentially bypassing rate limiting mechanisms. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24432, GHSA-7jmr-43qj-pw47
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gac9-1nnp-67cc |
|
| 47 |
| url |
VCID-gakd-m2af-z7c2 |
| vulnerability_id |
VCID-gakd-m2af-z7c2 |
| summary |
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain limited unauthorized access. Exploitation of this issue requires user interaction. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
| 4 |
|
|
| aliases |
CVE-2025-49550, GHSA-8hcx-xvww-6c6h
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gakd-m2af-z7c2 |
|
| 48 |
| url |
VCID-ggtj-fbzy-87fx |
| vulnerability_id |
VCID-ggtj-fbzy-87fx |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on confidentiality. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45122, GHSA-46fm-x82m-5f74
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ggtj-fbzy-87fx |
|
| 49 |
| url |
VCID-gx3s-7cxk-pyfc |
| vulnerability_id |
VCID-gx3s-7cxk-pyfc |
| summary |
Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploitation of this issue does not require user interaction, and scope is unchanged. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-49556, GHSA-7hrj-3c9x-xv5h
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gx3s-7cxk-pyfc |
|
| 50 |
| url |
VCID-gzga-qjaf-kugh |
| vulnerability_id |
VCID-gzga-qjaf-kugh |
| summary |
Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24428, GHSA-mm87-rrqx-94cr
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gzga-qjaf-kugh |
|
| 51 |
| url |
VCID-h2ju-dedu-fqad |
| vulnerability_id |
VCID-h2ju-dedu-fqad |
| summary |
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Incorrect Authorization vulnerability. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploit depends on conditions beyond the attacker's control. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-54265, GHSA-r355-75hw-r8jf
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h2ju-dedu-fqad |
|
| 52 |
| url |
VCID-hex3-vh93-53em |
| vulnerability_id |
VCID-hex3-vh93-53em |
| summary |
Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Authorization vulnerability that could result in Privilege escalation. An attacker could leverage this vulnerability to access other user's data. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4 |
| purl |
pkg:composer/magento/community-edition@2.4.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 20 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 21 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 22 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 23 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 24 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 25 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 26 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 27 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 28 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 29 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 30 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 31 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 32 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 33 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 34 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 35 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 36 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 37 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 38 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 39 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 40 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 41 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 42 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 43 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 44 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 45 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 46 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 47 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 48 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 49 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 50 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 51 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 52 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 53 |
| vulnerability |
VCID-ebf6-hmqh-77ae |
|
| 54 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 55 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 56 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 57 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 58 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 59 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 60 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 61 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 62 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 63 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 64 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 65 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 66 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 67 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 68 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 69 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 70 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 71 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 72 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 73 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 74 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 75 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 76 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 77 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 78 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 79 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 80 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 81 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 82 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 83 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 84 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 85 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 86 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 87 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 88 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 89 |
| vulnerability |
VCID-p7w3-uwrr-w3gv |
|
| 90 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 91 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 92 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 93 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 94 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 95 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 96 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 97 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 98 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 99 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 100 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 101 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 102 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 103 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 104 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 105 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 106 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 107 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 108 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 109 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 110 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 111 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 112 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 113 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 114 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 115 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 116 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 117 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 118 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 119 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 120 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 121 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 122 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 123 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 124 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 125 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 126 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 127 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 128 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 129 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 130 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 131 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 132 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 133 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 134 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 135 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5 |
| purl |
pkg:composer/magento/community-edition@2.4.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 42 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 43 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 44 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 45 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 46 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 47 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 48 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 49 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 50 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 51 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 52 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 53 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 54 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5 |
|
|
| aliases |
CVE-2022-34256, GHSA-r7mm-grf3-5fjv
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hex3-vh93-53em |
|
| 53 |
| url |
VCID-j9e4-4xta-6qc5 |
| vulnerability_id |
VCID-j9e4-4xta-6qc5 |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39414, GHSA-x6f9-hv9r-fgq4
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j9e4-4xta-6qc5 |
|
| 54 |
| url |
VCID-jc6r-vmnc-r3g9 |
| vulnerability_id |
VCID-jc6r-vmnc-r3g9 |
| summary |
Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Improper Authorization vulnerability that could result in Privilege escalation. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
| 4 |
|
| 5 |
|
|
| aliases |
CVE-2025-27188, GHSA-rr2g-rrjj-xw86
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jc6r-vmnc-r3g9 |
|
| 55 |
| url |
VCID-jeur-3jww-dqee |
| vulnerability_id |
VCID-jeur-3jww-dqee |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and perform a minor integrity change. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39412, GHSA-7472-vw39-g2j3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jeur-3jww-dqee |
|
| 56 |
| url |
VCID-kf6b-mshs-23fa |
| vulnerability_id |
VCID-kf6b-mshs-23fa |
| summary |
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and view minor unauthorised information. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
6.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 1 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 2 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 3 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 4 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 5 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 6 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 7 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 8 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 9 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 10 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 11 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 12 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 13 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 14 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 15 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 16 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 17 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 18 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 19 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 20 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 21 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 22 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 23 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 24 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 25 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 26 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p8 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p6 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 4 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 5 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 6 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 7 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 8 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 9 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 10 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 11 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 12 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 13 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 17 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 18 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 19 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 20 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 21 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 22 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 23 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 24 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 25 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 26 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 27 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 28 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 29 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 30 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 31 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 32 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 33 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 34 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 35 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 36 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 37 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 38 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 39 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 40 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 41 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 42 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 43 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 44 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 45 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 52 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 53 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 54 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 55 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 56 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 57 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 58 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 59 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 60 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 61 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 62 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 63 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 64 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 65 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p6 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
|
| aliases |
CVE-2024-34107, GHSA-r7cm-g469-wm4g
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kf6b-mshs-23fa |
|
| 57 |
| url |
VCID-kfct-k5af-n7fu |
| vulnerability_id |
VCID-kfct-k5af-n7fu |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Cross-Site Scripting (XSS) vulnerability that could be exploited to execute arbitrary code. If an admin attacker can trick a user into clicking a specially crafted link or submitting a form, malicious scripts may be executed within the context of the victim's browser and have high impact on confidentiality and integrity. Exploitation of this issue requires user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
8.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N |
|
| 1 |
| value |
6.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45116, GHSA-873m-72g6-853g
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kfct-k5af-n7fu |
|
| 58 |
| url |
VCID-kjc9-vrhf-hfav |
| vulnerability_id |
VCID-kjc9-vrhf-hfav |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized write access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24427, GHSA-v3hq-g424-5mgg
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kjc9-vrhf-hfav |
|
| 59 |
| url |
VCID-ktnj-j4xu-uufs |
| vulnerability_id |
VCID-ktnj-j4xu-uufs |
| summary |
Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could result in privilege escalation. A high-privileged attacker could trick a victim into executing unintended actions on a web application where the victim is authenticated, potentially allowing unauthorized access or modification of sensitive data. Exploitation of this issue requires user interaction in that a victim must visit a malicious website or click on a crafted link. Scope is changed. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-49555, GHSA-5777-jj7p-mpqw
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ktnj-j4xu-uufs |
|
| 60 |
| url |
VCID-kxjv-xm7r-hkhs |
| vulnerability_id |
VCID-kxjv-xm7r-hkhs |
| summary |
Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-27191, GHSA-vhcq-4xrm-2cr2
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kxjv-xm7r-hkhs |
|
| 61 |
| url |
VCID-mccb-abc5-9yfs |
| vulnerability_id |
VCID-mccb-abc5-9yfs |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have high impact on integrity. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
7.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45118, GHSA-cg52-68fv-94qq
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mccb-abc5-9yfs |
|
| 62 |
| url |
VCID-ngx2-ewzf-xbd4 |
| vulnerability_id |
VCID-ngx2-ewzf-xbd4 |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An admin attacker could exploit this vulnerability to read files from the system outside of the intended directories via PHP filter chain and also can have a low-availability impact on the service. Exploitation of this issue does not require user interaction and scope is changed. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.6 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L |
|
| 1 |
| value |
6.2 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:L |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45117, GHSA-3fr3-gcqh-3m2g
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ngx2-ewzf-xbd4 |
|
| 63 |
| url |
VCID-ntst-nee5-63d3 |
| vulnerability_id |
VCID-ntst-nee5-63d3 |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24410, GHSA-gjxp-46rq-wg4q
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ntst-nee5-63d3 |
|
| 64 |
| url |
VCID-pb4n-m8cv-9bb7 |
| vulnerability_id |
VCID-pb4n-m8cv-9bb7 |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could exploit this vulnerability to have a low impact on integrity. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45125, GHSA-xg36-8c2v-jpxh
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pb4n-m8cv-9bb7 |
|
| 65 |
| url |
VCID-pcm6-819d-6uhm |
| vulnerability_id |
VCID-pcm6-819d-6uhm |
| summary |
Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by a stored Cross-Site Scripting (XSS) Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality, and integrity impact to high. Exploitation of this issue requires user interaction in that a victim must browse to the page containing the vulnerable field. Scope is changed. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-54264, GHSA-2768-5wmv-cfff
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pcm6-819d-6uhm |
|
| 66 |
| url |
VCID-pfvk-8q6r-e7c5 |
| vulnerability_id |
VCID-pfvk-8q6r-e7c5 |
| summary |
Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in privilege escalation. A low-privileged attacker could leverage this vulnerability to bypass security measures and gain elevated privileges. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24437, GHSA-469f-wf4f-3jjv
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pfvk-8q6r-e7c5 |
|
| 67 |
| url |
VCID-pna2-wk6m-e3gu |
| vulnerability_id |
VCID-pna2-wk6m-e3gu |
| summary |
Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to impact the availability of a user's minor feature. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4 |
| purl |
pkg:composer/magento/community-edition@2.4.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 20 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 21 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 22 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 23 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 24 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 25 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 26 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 27 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 28 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 29 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 30 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 31 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 32 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 33 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 34 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 35 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 36 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 37 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 38 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 39 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 40 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 41 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 42 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 43 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 44 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 45 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 46 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 47 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 48 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 49 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 50 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 51 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 52 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 53 |
| vulnerability |
VCID-ebf6-hmqh-77ae |
|
| 54 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 55 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 56 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 57 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 58 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 59 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 60 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 61 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 62 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 63 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 64 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 65 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 66 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 67 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 68 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 69 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 70 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 71 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 72 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 73 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 74 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 75 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 76 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 77 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 78 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 79 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 80 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 81 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 82 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 83 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 84 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 85 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 86 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 87 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 88 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 89 |
| vulnerability |
VCID-p7w3-uwrr-w3gv |
|
| 90 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 91 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 92 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 93 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 94 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 95 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 96 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 97 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 98 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 99 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 100 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 101 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 102 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 103 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 104 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 105 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 106 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 107 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 108 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 109 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 110 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 111 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 112 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 113 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 114 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 115 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 116 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 117 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 118 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 119 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 120 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 121 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 122 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 123 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 124 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 125 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 126 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 127 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 128 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 129 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 130 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 131 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 132 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 133 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 134 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 135 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5 |
| purl |
pkg:composer/magento/community-edition@2.4.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 42 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 43 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 44 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 45 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 46 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 47 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 48 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 49 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 50 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 51 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 52 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 53 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 54 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5 |
|
|
| aliases |
CVE-2022-34259, GHSA-9wjf-94h3-r4rh
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pna2-wk6m-e3gu |
|
| 68 |
| url |
VCID-psnm-zaza-tuf9 |
| vulnerability_id |
VCID-psnm-zaza-tuf9 |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24414, GHSA-fhw6-3mj5-w9gv
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-psnm-zaza-tuf9 |
|
| 69 |
| url |
VCID-pu8a-r3v2-g7h9 |
| vulnerability_id |
VCID-pu8a-r3v2-g7h9 |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24416, GHSA-rjjw-g6hw-7pc9
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pu8a-r3v2-g7h9 |
|
| 70 |
| url |
VCID-q68u-w433-tqb9 |
| vulnerability_id |
VCID-q68u-w433-tqb9 |
| summary |
Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Insufficiently Protected Credentials vulnerability that could lead to a security feature bypass. A high privileged attacker could exploit this vulnerability to gain unauthorized access to protected resources by obtaining sensitive credential information. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-27192, GHSA-2r94-wm5v-4prx
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q68u-w433-tqb9 |
|
| 71 |
| url |
VCID-qh9p-8b9r-mufh |
| vulnerability_id |
VCID-qh9p-8b9r-mufh |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24412, GHSA-m4rg-mpp2-97px
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qh9p-8b9r-mufh |
|
| 72 |
| url |
VCID-qnpc-4r4b-3uhx |
| vulnerability_id |
VCID-qnpc-4r4b-3uhx |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39417, GHSA-4xmj-f664-hv98
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qnpc-4r4b-3uhx |
|
| 73 |
| url |
VCID-rm7u-jwat-v7f1 |
| vulnerability_id |
VCID-rm7u-jwat-v7f1 |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access, leading to both a High impact to confidentiality and Low impact to integrity. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24409, GHSA-vw47-79jv-3598
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rm7u-jwat-v7f1 |
|
| 74 |
| url |
VCID-rw4d-b9yt-mbhz |
| vulnerability_id |
VCID-rw4d-b9yt-mbhz |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an admin attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
4.8 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45127, GHSA-c89g-gq5r-2xw2
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rw4d-b9yt-mbhz |
|
| 75 |
| url |
VCID-s45p-jru3-w3df |
| vulnerability_id |
VCID-s45p-jru3-w3df |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass. An admin attacker could leverage this vulnerability to have a low impact on confidentiality which may aid in further attacks. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
2.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
5.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45133, GHSA-j3mh-wx5f-2vhg
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s45p-jru3-w3df |
|
| 76 |
| url |
VCID-s7t9-h2jx-9bgr |
| vulnerability_id |
VCID-s7t9-h2jx-9bgr |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39416, GHSA-4xgg-rw35-7mv5
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s7t9-h2jx-9bgr |
|
| 77 |
| url |
VCID-t4gd-uv9g-ukh5 |
| vulnerability_id |
VCID-t4gd-uv9g-ukh5 |
| summary |
Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a Business Logic Error vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to circumvent intended security mechanisms by manipulating the logic of the application's operations causing limited data modification. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24425, GHSA-6ff8-jrfg-43hh
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-t4gd-uv9g-ukh5 |
|
| 78 |
| url |
VCID-twda-bvut-9bhp |
| vulnerability_id |
VCID-twda-bvut-9bhp |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass. An admin attacker could leverage this vulnerability to have a low impact on confidentiality which may aid in further attacks. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
2.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
5.1 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45134, GHSA-4f89-5cwm-rm5g
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-twda-bvut-9bhp |
|
| 79 |
| url |
VCID-twdq-g82m-nqcp |
| vulnerability_id |
VCID-twdq-g82m-nqcp |
| summary |
Adobe Commerce versions 2.4.9-alpha1, 2.4.8-p1, 2.4.7-p6, 2.4.6-p11, 2.4.5-p13, 2.4.4-p14 and earlier are affected by an Improper Input Validation vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability by providing specially crafted input, causing the application to crash or become unresponsive. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-49554, GHSA-xgfm-992v-h2hr
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-twdq-g82m-nqcp |
|
| 80 |
| url |
VCID-u52p-wrjp-quhk |
| vulnerability_id |
VCID-u52p-wrjp-quhk |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features and perform minor integrity changeson behalf of a user. The vulnerability could be exploited by tricking a victim into clicking a link or loading a page that submits a malicious request. Exploitation of this issue requires user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39408, GHSA-4cj6-f32v-6hgx
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u52p-wrjp-quhk |
|
| 81 |
| url |
VCID-u9vz-axk1-fqfn |
| vulnerability_id |
VCID-u9vz-axk1-fqfn |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24415, GHSA-gc27-rvvm-q77r
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-u9vz-axk1-fqfn |
|
| 82 |
| url |
VCID-v5gv-qmy3-67fd |
| vulnerability_id |
VCID-v5gv-qmy3-67fd |
| summary |
Adobe Commerce versions 2.4.2-p2 (and earlier), 2.4.3 (and earlier) and 2.3.7p1 (and earlier) are affected by a cross-site request forgery (CSRF) vulnerability via a Wishlist Share Link. Successful exploitation could lead to unauthorized addition to customer cart by an unauthenticated attacker. Access to the admin console is not required for successful exploitation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
|
| 1 |
| value |
4.9 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4 |
| purl |
pkg:composer/magento/community-edition@2.4.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 20 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 21 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 22 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 23 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 24 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 25 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 26 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 27 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 28 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 29 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 30 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 31 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 32 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 33 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 34 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 35 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 36 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 37 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 38 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 39 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 40 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 41 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 42 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 43 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 44 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 45 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 46 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 47 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 48 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 49 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 50 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 51 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 52 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 53 |
| vulnerability |
VCID-ebf6-hmqh-77ae |
|
| 54 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 55 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 56 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 57 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 58 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 59 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 60 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 61 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 62 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 63 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 64 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 65 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 66 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 67 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 68 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 69 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 70 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 71 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 72 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 73 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 74 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 75 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 76 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 77 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 78 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 79 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 80 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 81 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 82 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 83 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 84 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 85 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 86 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 87 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 88 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 89 |
| vulnerability |
VCID-p7w3-uwrr-w3gv |
|
| 90 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 91 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 92 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 93 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 94 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 95 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 96 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 97 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 98 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 99 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 100 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 101 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 102 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 103 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 104 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 105 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 106 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 107 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 108 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 109 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 110 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 111 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 112 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 113 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 114 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 115 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 116 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 117 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 118 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 119 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 120 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 121 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 122 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 123 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 124 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 125 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 126 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 127 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 128 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 129 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 130 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 131 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 132 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 133 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 134 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 135 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4 |
|
|
| aliases |
CVE-2021-39864, GHSA-94wq-87g6-8h77
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v5gv-qmy3-67fd |
|
| 83 |
| url |
VCID-vgz6-nvj3-xqft |
| vulnerability_id |
VCID-vgz6-nvj3-xqft |
| summary |
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on confidentiality and integrity. Exploitation of this issue does not require user interaction. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p11 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p10 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 4 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 5 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 6 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 7 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 8 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 9 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 10 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 11 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 12 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 13 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 14 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 15 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 16 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 17 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 18 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 19 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 20 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 21 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 22 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 23 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p8 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p3 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 5 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 6 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 7 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 8 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 9 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 10 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 11 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 12 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 13 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 14 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 15 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 16 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 17 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 18 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 19 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 20 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 21 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 22 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 23 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 24 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 25 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 26 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 27 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 28 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 29 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 30 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 31 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 32 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 33 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 37 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 38 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 39 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 40 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 41 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 42 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 43 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 44 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p3 |
|
| 4 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
|
| aliases |
CVE-2024-45131, GHSA-xc5p-773w-m3pm
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vgz6-nvj3-xqft |
|
| 84 |
| url |
VCID-wfdz-b6c4-quhq |
| vulnerability_id |
VCID-wfdz-b6c4-quhq |
| summary |
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p10 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p10 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p10 |
|
| 1 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p7 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 7 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 8 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 9 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 10 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 11 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 12 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 13 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 14 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 15 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 16 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 17 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 18 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 19 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 20 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 21 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 22 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 23 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 24 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 25 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 26 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 27 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 28 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 29 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 30 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 31 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 32 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 33 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 34 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 35 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 36 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 37 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 38 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 39 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 40 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 41 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 42 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 43 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p7 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p2 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 5 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 6 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 7 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 8 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 9 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 10 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 11 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 12 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 13 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 14 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 15 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 16 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 17 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 18 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 19 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 20 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 21 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 22 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 23 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 24 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 25 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 26 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 27 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 28 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 29 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 30 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 31 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 32 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 33 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 34 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 35 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 36 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 37 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 38 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 39 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 40 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 41 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 42 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 43 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 44 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 45 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 52 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 53 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 54 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 55 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 56 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 57 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 58 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 59 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 60 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 61 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 62 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 63 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 64 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p2 |
|
|
| aliases |
CVE-2024-39411, GHSA-qm77-mqf3-fmhq
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wfdz-b6c4-quhq |
|
| 85 |
| url |
VCID-wsu4-ubj1-rfea |
| vulnerability_id |
VCID-wsu4-ubj1-rfea |
| summary |
Adobe Commerce versions 2.4.3-p2 (and earlier), 2.3.7-p3 (and earlier) and 2.4.4 (and earlier) are affected by an XML Injection vulnerability in the Widgets Module. An attacker with admin privileges can trigger a specially crafted script to achieve remote code execution. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4 |
| purl |
pkg:composer/magento/community-edition@2.4.4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4h6z-sxux-1fc8 |
|
| 18 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 19 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 20 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 21 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 22 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 23 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 24 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 25 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 26 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 27 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 28 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 29 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 30 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 31 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 32 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 33 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 34 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 35 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 36 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 37 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 38 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 39 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 40 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 41 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 42 |
| vulnerability |
VCID-c26k-zm91-eufg |
|
| 43 |
| vulnerability |
VCID-cz7e-3kqn-gqfm |
|
| 44 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 45 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 46 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 47 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 48 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 49 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 50 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 51 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 52 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 53 |
| vulnerability |
VCID-ebf6-hmqh-77ae |
|
| 54 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 55 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 56 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 57 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 58 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 59 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 60 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 61 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 62 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 63 |
| vulnerability |
VCID-fs2p-2pcw-pkbg |
|
| 64 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 65 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 66 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 67 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 68 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 69 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 70 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 71 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 72 |
| vulnerability |
VCID-hex3-vh93-53em |
|
| 73 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 74 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 75 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 76 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 77 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 78 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 79 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 80 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 81 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 82 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 83 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 84 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 85 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 86 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 87 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 88 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 89 |
| vulnerability |
VCID-p7w3-uwrr-w3gv |
|
| 90 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 91 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 92 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 93 |
| vulnerability |
VCID-pna2-wk6m-e3gu |
|
| 94 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 95 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 96 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 97 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 98 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 99 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 100 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 101 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 102 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 103 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 104 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 105 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 106 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 107 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 108 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 109 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 110 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 111 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 112 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 113 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 114 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 115 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 116 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 117 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 118 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 119 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 120 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 121 |
| vulnerability |
VCID-wsu4-ubj1-rfea |
|
| 122 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 123 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 124 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 125 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 126 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 127 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 128 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 129 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 130 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 131 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 132 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 133 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 134 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 135 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5 |
| purl |
pkg:composer/magento/community-edition@2.4.5 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1bw2-wubb-hqdf |
|
| 4 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 5 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 6 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 7 |
| vulnerability |
VCID-2tge-6ken-kqge |
|
| 8 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 9 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 10 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 11 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 12 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 13 |
| vulnerability |
VCID-3w11-7use-6kfv |
|
| 14 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 15 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 16 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 17 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 18 |
| vulnerability |
VCID-549e-3kmc-cyfw |
|
| 19 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 20 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 21 |
| vulnerability |
VCID-6gtw-hr2w-5fcd |
|
| 22 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 23 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 24 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 25 |
| vulnerability |
VCID-7hqr-a671-wfhq |
|
| 26 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 27 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 28 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 29 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 30 |
| vulnerability |
VCID-8r3a-tuwb-k3f5 |
|
| 31 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 32 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 33 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 34 |
| vulnerability |
VCID-9kv7-4rer-m3fs |
|
| 35 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 36 |
| vulnerability |
VCID-afft-etfr-n3ep |
|
| 37 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 38 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 39 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 40 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 41 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 42 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 43 |
| vulnerability |
VCID-df8h-8pgg-efg2 |
|
| 44 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 45 |
| vulnerability |
VCID-drw7-nqdq-sfgj |
|
| 46 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 47 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 48 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 49 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 50 |
| vulnerability |
VCID-eban-ja9z-f7ep |
|
| 51 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 52 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 53 |
| vulnerability |
VCID-ezee-pmc6-tuc2 |
|
| 54 |
| vulnerability |
VCID-faxs-pnwr-8udn |
|
| 55 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 56 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 57 |
| vulnerability |
VCID-ff1h-49j6-fygj |
|
| 58 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 59 |
| vulnerability |
VCID-frhp-vgpt-g7am |
|
| 60 |
| vulnerability |
VCID-fz2x-ms14-pkfs |
|
| 61 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 62 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 63 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 64 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 65 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 66 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 67 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 68 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 69 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 70 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 71 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 72 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 73 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 74 |
| vulnerability |
VCID-kbkg-d58m-h7bf |
|
| 75 |
| vulnerability |
VCID-kf6b-mshs-23fa |
|
| 76 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 77 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 78 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 79 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 80 |
| vulnerability |
VCID-mb5s-j22m-3qdx |
|
| 81 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 82 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 83 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 84 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 85 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 86 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 87 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 88 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 89 |
| vulnerability |
VCID-pzjb-n7ah-ffcg |
|
| 90 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 91 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 92 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 93 |
| vulnerability |
VCID-qcwq-814h-63c2 |
|
| 94 |
| vulnerability |
VCID-qgse-3kg2-7ke7 |
|
| 95 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 96 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 97 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 98 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 99 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 100 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 101 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 102 |
| vulnerability |
VCID-swsg-c57z-1fe5 |
|
| 103 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 104 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 105 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 106 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 107 |
| vulnerability |
VCID-u7wj-vk3w-sbb8 |
|
| 108 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 109 |
| vulnerability |
VCID-v4kk-tszr-puge |
|
| 110 |
| vulnerability |
VCID-vgck-qufa-y7g8 |
|
| 111 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 112 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 113 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 114 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 115 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 116 |
| vulnerability |
VCID-xgk2-yecx-q3ff |
|
| 117 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 118 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 119 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 120 |
| vulnerability |
VCID-xrwz-zqgd-7yc5 |
|
| 121 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 122 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 123 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 124 |
| vulnerability |
VCID-zthr-mpwx-1fef |
|
| 125 |
| vulnerability |
VCID-zv6m-4py8-3ydq |
|
| 126 |
| vulnerability |
VCID-zwem-swqk-1kaz |
|
| 127 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5 |
|
|
| aliases |
CVE-2022-34253, GHSA-cj7w-pm77-hvg6
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wsu4-ubj1-rfea |
|
| 86 |
| url |
VCID-wxkj-7zgv-x7bc |
| vulnerability_id |
VCID-wxkj-7zgv-x7bc |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability that could result in a security feature bypass. An attacker could exploit this race condition to alter a condition after it has been checked but before it is used, potentially bypassing rate limiting mechanisms. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24430, GHSA-6w27-c66f-gvhq
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wxkj-7zgv-x7bc |
|
| 87 |
| url |
VCID-xgh4-b9yn-dkh4 |
| vulnerability_id |
VCID-xgh4-b9yn-dkh4 |
| summary |
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain limited write access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
| 4 |
|
|
| aliases |
CVE-2025-27206, GHSA-g2pj-xmxq-3r9q
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xgh4-b9yn-dkh4 |
|
| 88 |
| url |
VCID-xgk2-yecx-q3ff |
| vulnerability_id |
VCID-xgk2-yecx-q3ff |
| summary |
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could result in arbitrary code execution. An attacker could exploit this vulnerability by sending a crafted XML document that references external entities. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 1 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 2 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 3 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 4 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 5 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 6 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 7 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 8 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 9 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 10 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 11 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 12 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 13 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 14 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 15 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 16 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 17 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 18 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 19 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 20 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 21 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 22 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 23 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 24 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 25 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 26 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p8 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p6 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 4 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 5 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 6 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 7 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 8 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 9 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 10 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 11 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 12 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 13 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 17 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 18 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 19 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 20 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 21 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 22 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 23 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 24 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 25 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 26 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 27 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 28 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 29 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 30 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 31 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 32 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 33 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 34 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 35 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 36 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 37 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 38 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 39 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 40 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 41 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 42 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 43 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 44 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 45 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 52 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 53 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 54 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 55 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 56 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 57 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 58 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 59 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 60 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 61 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 62 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 63 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 64 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 65 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p6 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
|
| aliases |
CVE-2024-34102, GHSA-m8cj-3v68-3cxj
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xgk2-yecx-q3ff |
|
| 89 |
| url |
VCID-xjd4-w9bn-mbex |
| vulnerability_id |
VCID-xjd4-w9bn-mbex |
| summary |
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access leading to a limited impact to confidentiality and a high impact to integrity. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
| 4 |
|
|
| aliases |
CVE-2025-43585, GHSA-r487-9vv5-75gg
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xjd4-w9bn-mbex |
|
| 90 |
| url |
VCID-xqc4-jf6e-abfg |
| vulnerability_id |
VCID-xqc4-jf6e-abfg |
| summary |
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. A high-privileged attacker could leverage this vulnerability to bypass security measures and gain limited unauthorized access. Exploitation of this issue does not require user interaction. |
| references |
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.8-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 1 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 2 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 3 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 4 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 5 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 6 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 7 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 8 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 9 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 10 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 11 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 12 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 13 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 14 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 15 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 16 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 17 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 18 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 19 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 20 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 21 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 22 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 23 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 24 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 25 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 26 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 27 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 28 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 29 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 30 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 31 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 32 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 33 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 34 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 35 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 36 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 37 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 38 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 39 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.8-beta1 |
|
| 4 |
|
|
| aliases |
CVE-2025-49549, GHSA-85jx-x9r4-45m2
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xqc4-jf6e-abfg |
|
| 91 |
| url |
VCID-z97t-ffda-vfes |
| vulnerability_id |
VCID-z97t-ffda-vfes |
| summary |
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. Scope is changed to that of other high-privileged accounts, leading to a high impact on confidentiality, integrity, and availability. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-47110, GHSA-j934-vjh5-vf9r
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-z97t-ffda-vfes |
|
| 92 |
| url |
VCID-za87-d5x9-wuby |
| vulnerability_id |
VCID-za87-d5x9-wuby |
| summary |
Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. A successful attacker can abuse this to achieve session takeover, increasing the confidentiality and integrity impact as high. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:composer/magento/community-edition@2.4.4-p12 |
| purl |
pkg:composer/magento/community-edition@2.4.4-p12 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.4-p12 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p11 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p11 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p11 |
|
| 2 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-p4 |
| purl |
pkg:composer/magento/community-edition@2.4.7-p4 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 1 |
| vulnerability |
VCID-53sd-5nuj-e7d9 |
|
| 2 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 3 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 4 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 5 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 6 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 7 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 8 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 9 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 10 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 11 |
| vulnerability |
VCID-jc6r-vmnc-r3g9 |
|
| 12 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 13 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 14 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 15 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 16 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 17 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 18 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 19 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 20 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-p4 |
|
| 4 |
|
|
| aliases |
CVE-2025-24413, GHSA-xwgx-8v72-4j5j
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-za87-d5x9-wuby |
|
| 93 |
| url |
VCID-zthr-mpwx-1fef |
| vulnerability_id |
VCID-zthr-mpwx-1fef |
| summary |
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could lead to arbitrary file system read. A low-privilege authenticated attacker can force the application to make arbitrary requests via injection of arbitrary URLs. Exploitation of this issue does not require user interaction.. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 1 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 2 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 3 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 4 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 5 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 6 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 7 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 8 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 9 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 10 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 11 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 12 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 13 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 14 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 15 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 16 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 17 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 18 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 19 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 20 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 21 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 22 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 23 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 24 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 25 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 26 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p8 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p6 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 4 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 5 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 6 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 7 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 8 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 9 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 10 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 11 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 12 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 13 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 17 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 18 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 19 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 20 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 21 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 22 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 23 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 24 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 25 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 26 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 27 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 28 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 29 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 30 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 31 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 32 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 33 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 34 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 35 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 36 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 37 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 38 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 39 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 40 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 41 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 42 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 43 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 44 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 45 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 52 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 53 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 54 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 55 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 56 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 57 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 58 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 59 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 60 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 61 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 62 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 63 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 64 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 65 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p6 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
|
| aliases |
CVE-2024-34111, GHSA-jmqp-r3gg-6jh3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zthr-mpwx-1fef |
|
| 94 |
| url |
VCID-zv6m-4py8-3ydq |
| vulnerability_id |
VCID-zv6m-4py8-3ydq |
| summary |
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an admin attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/magento/magento2 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
|
| 1 |
| value |
4.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N |
|
| 2 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/magento/magento2 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
| url |
pkg:composer/magento/community-edition@2.4.5-p8 |
| purl |
pkg:composer/magento/community-edition@2.4.5-p8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 1 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 2 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 3 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 4 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 5 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 6 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 7 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 8 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 9 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 10 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 11 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 12 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 13 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 14 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 15 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 16 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 17 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 18 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 19 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 20 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 21 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 22 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 23 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 24 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 25 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 26 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.5-p8 |
|
| 2 |
| url |
pkg:composer/magento/community-edition@2.4.6-p6 |
| purl |
pkg:composer/magento/community-edition@2.4.6-p6 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-158t-bqnb-83d4 |
|
| 2 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 3 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 4 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 5 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 6 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 7 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 8 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 9 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 10 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 11 |
| vulnerability |
VCID-3ydj-usv4-47fq |
|
| 12 |
| vulnerability |
VCID-4b5p-wqtj-7kbe |
|
| 13 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 17 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 18 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 19 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 20 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 21 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 22 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 23 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 24 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 25 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 26 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 27 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 28 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 29 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 30 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 31 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 32 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 33 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 34 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 35 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 36 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 37 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 38 |
| vulnerability |
VCID-jeur-3jww-dqee |
|
| 39 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 40 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 41 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 42 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 43 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 44 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 45 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 46 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 47 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 48 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 49 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 50 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 51 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 52 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 53 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 54 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 55 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 56 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 57 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 58 |
| vulnerability |
VCID-u52p-wrjp-quhk |
|
| 59 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 60 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 61 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 62 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 63 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 64 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 65 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.6-p6 |
|
| 3 |
| url |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| purl |
pkg:composer/magento/community-edition@2.4.7-beta1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-141w-faqu-w3ay |
|
| 1 |
| vulnerability |
VCID-16es-u6cy-u3g8 |
|
| 2 |
| vulnerability |
VCID-1mpb-gzr2-53ar |
|
| 3 |
| vulnerability |
VCID-1vq9-br2m-dbby |
|
| 4 |
| vulnerability |
VCID-2t3q-pmg5-qyhn |
|
| 5 |
| vulnerability |
VCID-313z-h2v4-c3fr |
|
| 6 |
| vulnerability |
VCID-368r-um85-k3d2 |
|
| 7 |
| vulnerability |
VCID-3a8p-9krx-23e8 |
|
| 8 |
| vulnerability |
VCID-3s5p-wb18-13ge |
|
| 9 |
| vulnerability |
VCID-3uj4-thpr-cue1 |
|
| 10 |
| vulnerability |
VCID-466x-mpt9-gbgy |
|
| 11 |
| vulnerability |
VCID-4nqq-nrne-17a2 |
|
| 12 |
| vulnerability |
VCID-5edy-fp8q-97fp |
|
| 13 |
| vulnerability |
VCID-6d1u-exkw-hbfu |
|
| 14 |
| vulnerability |
VCID-6v47-xgpq-zkgf |
|
| 15 |
| vulnerability |
VCID-78hy-q8kh-kyh7 |
|
| 16 |
| vulnerability |
VCID-7bmk-3ab2-9ba6 |
|
| 17 |
| vulnerability |
VCID-7j68-gund-4qhp |
|
| 18 |
| vulnerability |
VCID-8365-zgh2-w3cc |
|
| 19 |
| vulnerability |
VCID-8gwb-c3ck-37f8 |
|
| 20 |
| vulnerability |
VCID-8hfe-bt2u-37f9 |
|
| 21 |
| vulnerability |
VCID-96hr-sbyj-27dw |
|
| 22 |
| vulnerability |
VCID-9gb1-p5qf-3kd2 |
|
| 23 |
| vulnerability |
VCID-9gbf-swtt-7bhz |
|
| 24 |
| vulnerability |
VCID-a6gj-zm14-aqhq |
|
| 25 |
| vulnerability |
VCID-ax9q-y1rb-33b2 |
|
| 26 |
| vulnerability |
VCID-bfp1-cndf-d7d7 |
|
| 27 |
| vulnerability |
VCID-bftg-2sea-57cv |
|
| 28 |
| vulnerability |
VCID-bvfd-gs5b-dyg7 |
|
| 29 |
| vulnerability |
VCID-ctrj-y3d6-a7dv |
|
| 30 |
| vulnerability |
VCID-cyy2-3rr3-jkc8 |
|
| 31 |
| vulnerability |
VCID-d9zc-rh9p-4bde |
|
| 32 |
| vulnerability |
VCID-dktm-v3jw-f7de |
|
| 33 |
| vulnerability |
VCID-dsy7-gm7v-tqc8 |
|
| 34 |
| vulnerability |
VCID-dytj-h56v-bke9 |
|
| 35 |
| vulnerability |
VCID-e2t8-b5yy-zkhn |
|
| 36 |
| vulnerability |
VCID-e9g4-n5c8-6yf9 |
|
| 37 |
| vulnerability |
VCID-esjc-zzqy-nycf |
|
| 38 |
| vulnerability |
VCID-eusf-bc81-9uhv |
|
| 39 |
| vulnerability |
VCID-fb5x-afrq-87aj |
|
| 40 |
| vulnerability |
VCID-ferd-u8gt-akds |
|
| 41 |
| vulnerability |
VCID-fqkf-67fw-cyb8 |
|
| 42 |
| vulnerability |
VCID-gac9-1nnp-67cc |
|
| 43 |
| vulnerability |
VCID-gakd-m2af-z7c2 |
|
| 44 |
| vulnerability |
VCID-ggtj-fbzy-87fx |
|
| 45 |
| vulnerability |
VCID-gx3s-7cxk-pyfc |
|
| 46 |
| vulnerability |
VCID-gxbc-u5mr-f3c9 |
|
| 47 |
| vulnerability |
VCID-gzga-qjaf-kugh |
|
| 48 |
| vulnerability |
VCID-h2ju-dedu-fqad |
|
| 49 |
| vulnerability |
VCID-j9e4-4xta-6qc5 |
|
| 50 |
| vulnerability |
VCID-jkrp-j7st-27f3 |
|
| 51 |
| vulnerability |
VCID-jnuu-9mt7-jyd5 |
|
| 52 |
| vulnerability |
VCID-jyhf-huep-tya2 |
|
| 53 |
| vulnerability |
VCID-kfct-k5af-n7fu |
|
| 54 |
| vulnerability |
VCID-kjc9-vrhf-hfav |
|
| 55 |
| vulnerability |
VCID-ktnj-j4xu-uufs |
|
| 56 |
| vulnerability |
VCID-kxjv-xm7r-hkhs |
|
| 57 |
| vulnerability |
VCID-mccb-abc5-9yfs |
|
| 58 |
| vulnerability |
VCID-ngx2-ewzf-xbd4 |
|
| 59 |
| vulnerability |
VCID-ntst-nee5-63d3 |
|
| 60 |
| vulnerability |
VCID-pb4n-m8cv-9bb7 |
|
| 61 |
| vulnerability |
VCID-pcm6-819d-6uhm |
|
| 62 |
| vulnerability |
VCID-pfvk-8q6r-e7c5 |
|
| 63 |
| vulnerability |
VCID-psnm-zaza-tuf9 |
|
| 64 |
| vulnerability |
VCID-pu8a-r3v2-g7h9 |
|
| 65 |
| vulnerability |
VCID-q12a-kwpk-yufv |
|
| 66 |
| vulnerability |
VCID-q68u-w433-tqb9 |
|
| 67 |
| vulnerability |
VCID-qbx1-jqke-v7hf |
|
| 68 |
| vulnerability |
VCID-qh9p-8b9r-mufh |
|
| 69 |
| vulnerability |
VCID-qnpc-4r4b-3uhx |
|
| 70 |
| vulnerability |
VCID-qr8w-qwb5-6uag |
|
| 71 |
| vulnerability |
VCID-rm7u-jwat-v7f1 |
|
| 72 |
| vulnerability |
VCID-rw4d-b9yt-mbhz |
|
| 73 |
| vulnerability |
VCID-s45p-jru3-w3df |
|
| 74 |
| vulnerability |
VCID-s7t9-h2jx-9bgr |
|
| 75 |
| vulnerability |
VCID-t4gd-uv9g-ukh5 |
|
| 76 |
| vulnerability |
VCID-twda-bvut-9bhp |
|
| 77 |
| vulnerability |
VCID-twdq-g82m-nqcp |
|
| 78 |
| vulnerability |
VCID-u9vz-axk1-fqfn |
|
| 79 |
| vulnerability |
VCID-vgz6-nvj3-xqft |
|
| 80 |
| vulnerability |
VCID-vwpg-z9en-6yej |
|
| 81 |
| vulnerability |
VCID-wfdz-b6c4-quhq |
|
| 82 |
| vulnerability |
VCID-wxkj-7zgv-x7bc |
|
| 83 |
| vulnerability |
VCID-xgh4-b9yn-dkh4 |
|
| 84 |
| vulnerability |
VCID-xjd4-w9bn-mbex |
|
| 85 |
| vulnerability |
VCID-xmby-7b1y-v3cn |
|
| 86 |
| vulnerability |
VCID-xqc4-jf6e-abfg |
|
| 87 |
| vulnerability |
VCID-z97t-ffda-vfes |
|
| 88 |
| vulnerability |
VCID-za87-d5x9-wuby |
|
| 89 |
| vulnerability |
VCID-zssu-1dmn-sycb |
|
| 90 |
| vulnerability |
VCID-zym7-1cr7-mkaa |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:composer/magento/community-edition@2.4.7-beta1 |
|
|
| aliases |
CVE-2024-34105, GHSA-5632-wq7m-gfq9
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zv6m-4py8-3ydq |
|