| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-45148 | Adobe Commerce | Improper Authentication (CWE-287) | Adobe | Adobe Commerce | High | 8.8 | 2024-10-10 09:57:54 | Deep Dive |
| CVE-2024-45131 | Adobe Commerce | Incorrect Authorization (CWE-863) | Adobe | Adobe Commerce | Medium | 5.4 | 2024-10-10 09:57:54 | Deep Dive |
| CVE-2024-45134 | Adobe Commerce | Information Exposure (CWE-200) | Adobe | Adobe Commerce | Low | 2.7 | 2024-10-10 09:57:53 | Deep Dive |
| CVE-2024-45129 | Adobe Commerce | Improper Access Control (CWE-284) | Adobe | Adobe Commerce | Medium | 4.3 | 2024-10-10 09:57:52 | Deep Dive |
| CVE-2024-45118 | Adobe Commerce | Improper Access Control (CWE-284) | Adobe | Adobe Commerce | Medium | 6.5 | 2024-10-10 09:57:51 | Deep Dive |
| CVE-2024-45149 | Adobe Commerce | Improper Access Control (CWE-284) | Adobe | Adobe Commerce | Low | 2.7 | 2024-10-10 09:57:50 | Deep Dive |
| CVE-2024-45125 | Adobe Commerce | Incorrect Authorization (CWE-863) | Adobe | Adobe Commerce | Medium | 4.3 | 2024-10-10 09:57:50 | Deep Dive |
| CVE-2024-45278 | Cross-Site Scripting (XSS) vulnerability in SAP Commerce Backoffice | SAP_SE | SAP Commerce Backoffice | Medium | 5.4 | 2024-10-08 03:21:26 | Deep Dive |
| CVE-2024-45366 | WordPress plugin Welcart e-Commerce 安全漏洞 | Welcart Inc. | Welcart e-Commerce | - | - | 2024-09-18 05:20:42 | Deep Dive |
| CVE-2024-42404 | WordPress plugin Welcart e-Commerce 安全漏洞 | Welcart Inc. | Welcart e-Commerce | - | - | 2024-09-18 05:20:30 | Deep Dive |
| CVE-2024-8292 | WP-Recall – Registration, Profile, Commerce & More <= 16.26.8 - Insecure Direct Object Reference to Unauthenticated Arbitrary Password Update | wppost | WP-Recall – Registration, Profile, Commerce & More | Critical | 9.8 | 2024-09-06 06:50:53 | Deep Dive |
| CVE-2024-8217 | SourceCodester E-Commerce Website registration.php sql injection | SourceCodester | E-Commerce Website | High | 7.3 | 2024-08-27 20:31:06 | Deep Dive |
| CVE-2024-8139 | itsourcecode E-Commerce Website search_list.php sql injection | itsourcecode | E-Commerce Website | Medium | 6.3 | 2024-08-25 01:00:05 | Deep Dive |
| CVE-2024-8089 | SourceCodester E-Commerce System controller.php unrestricted upload | SourceCodester | E-Commerce System | Medium | 6.3 | 2024-08-22 23:31:07 | Deep Dive |
| CVE-2024-8087 | SourceCodester E-Commerce System popup_Item.php sql injection | SourceCodester | E-Commerce System | Medium | 6.3 | 2024-08-22 23:00:06 | Deep Dive |
| CVE-2024-8086 | SourceCodester E-Commerce System Admin Login login.php sql injection | SourceCodester | E-Commerce System | High | 7.3 | 2024-08-22 22:31:05 | Deep Dive |
| CVE-2024-39403 | Stored XSS through Webhook module public key configuration | Adobe | Adobe Commerce | High | 7.6 | 2024-08-14 11:57:22 | Deep Dive |
| CVE-2024-39419 | A user without ship permissions can ship the orders | Adobe | Adobe Commerce | Medium | 4.3 | 2024-08-14 11:57:22 | Deep Dive |
| CVE-2024-39418 | Adobe Commerce | Improper Authorization (CWE-285) | Adobe | Adobe Commerce | Medium | 5.4 | 2024-08-14 11:57:21 | Deep Dive |
| CVE-2024-39413 | An unauthorized user can export the Invoiced Sales Report | Adobe | Adobe Commerce | Medium | 4.3 | 2024-08-14 11:57:20 | Deep Dive |