| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-31360 | WordPress Benchmark Email Lite plugin <= 4.1 - Cross Site Request Forgery (CSRF) vulnerability | Coded Commerce, LLC | Benchmark Email Lite | Medium | 4.3 | 2024-04-12 12:23:28 | Deep Dive |
| CVE-2024-20758 | Adobe Commerce | Improper Input Validation (CWE-20) | Adobe | Adobe Commerce | Critical | 9.0 | 2024-04-10 11:49:04 | Deep Dive |
| CVE-2024-20759 | Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) | Adobe | Adobe Commerce | High | 8.1 | 2024-04-10 11:49:03 | Deep Dive |
| CVE-2023-6047 | Reflected XSS in Algoritim E-commerce Software | Algoritim | E-commerce Software | Medium | 6.1 | 2024-03-29 11:35:09 | Deep Dive |
| CVE-2024-2754 | SourceCodester Complete E-Commerce Site users_photo.php unrestricted upload | SourceCodester | Complete E-Commerce Site | Medium | 4.7 | 2024-03-21 07:00:09 | Deep Dive |
| CVE-2024-20716 | Force high-usage of resources by generating unlimited coupons: Adobe Commerce | Adobe | Adobe Commerce | Medium | 4.9 | 2024-02-15 13:39:41 | Deep Dive |
| CVE-2024-20717 | Stored admin XSS via PayPal authentication certificate | Adobe | Adobe Commerce | Medium | 5.4 | 2024-02-15 13:39:40 | Deep Dive |
| CVE-2024-20718 | [Spain] CSRF to delete Requisition Lists at Adobe Commerce | Adobe | Adobe Commerce | Medium | 4.3 | 2024-02-15 13:39:39 | Deep Dive |
| CVE-2024-20719 | [Adobe Commerce] Stored XSS from low privileged admin user on every admin page, bypassing CVE-2023-29297 | Adobe | Adobe Commerce | Critical | 9.1 | 2024-02-15 13:39:39 | Deep Dive |
| CVE-2024-20720 | Command injection in data collector backup due to insufficient patching of CVE-2023-38208 | Adobe | Adobe Commerce | Critical | 9.1 | 2024-02-15 13:39:38 | Deep Dive |
| CVE-2024-0678 | Order Delivery Date for WP e-Commerce <= 1.2 - Unauthenticated Stored Cross-Site Scripting | tychesoftwares | Order Delivery Date for WP e-Commerce | Medium | 6.5 | 2024-02-05 21:21:49 | Deep Dive |
| CVE-2023-4674 | SQLi in Yazteks E-Commerce Software | Yaztek Software Technologies and Computer Systems | E-Commerce Software | Critical | 9.8 | 2023-12-29 14:38:40 | Deep Dive |
| CVE-2023-51421 | WordPress Verge3D Plugin <= 4.5.2 is vulnerable to Arbitrary File Upload | Soft8Soft LLC | Verge3D Publishing and E-Commerce | Critical | 9.9 | 2023-12-29 13:18:03 | Deep Dive |
| CVE-2023-51420 | WordPress Verge3D Plugin <= 4.5.2 is vulnerable to Remote Code Execution (RCE) | Soft8Soft LLC | Verge3D Publishing and E-Commerce | Critical | 9.1 | 2023-12-29 09:16:34 | Deep Dive |
| CVE-2023-50847 | WordPress Welcart e-Commerce Plugin <= 2.9.3 is vulnerable to SQL Injection | Collne Inc. | Welcart e-Commerce | High | 7.6 | 2023-12-28 18:15:01 | Deep Dive |
| CVE-2023-7124 | code-projects E-Commerce Site search.php cross site scripting | code-projects | E-Commerce Site | Medium | 4.3 | 2023-12-28 02:31:04 | Deep Dive |
| CVE-2023-7108 | code-projects E-Commerce Website user_signup.php cross site scripting | code-projects | E-Commerce Website | Medium | 4.3 | 2023-12-26 00:00:07 | Deep Dive |
| CVE-2023-7107 | code-projects E-Commerce Website user_signup.php sql injection | code-projects | E-Commerce Website | High | 7.3 | 2023-12-25 23:31:04 | Deep Dive |
| CVE-2023-7106 | code-projects E-Commerce Website sql injection | code-projects | E-Commerce Website | Medium | 6.3 | 2023-12-25 23:00:06 | Deep Dive |
| CVE-2023-7105 | code-projects E-Commerce Website index_search.php sql injection | code-projects | E-Commerce Website | Medium | 4.7 | 2023-12-25 22:31:04 | Deep Dive |