| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-41962 | WordPress plugin Welcart e-Commerce 安全漏洞 | Collne Inc. | Welcart e-Commerce | 中危 | - | 2023-09-26 08:16:36 | Deep Dive |
| CVE-2023-41233 | WordPress plugin Welcart e-Commerce 跨站脚本漏洞 | Collne Inc. | Welcart e-Commerce | 中危 | - | 2023-09-26 08:15:40 | Deep Dive |
| CVE-2023-40532 | WordPress plugin Welcart e-Commerce 路径遍历漏洞 | Collne Inc. | Welcart e-Commerce | 中危 | - | 2023-09-26 08:14:18 | Deep Dive |
| CVE-2023-40219 | WordPress plugin Welcart e-Commerce 代码问题漏洞 | Collne Inc. | Welcart e-Commerce | 高危 | - | 2023-09-26 08:13:16 | Deep Dive |
| CVE-2022-24093 | Adobe Commerce post-auth improper input validation leads to remote code execution | Adobe | Adobe Commerce | Critical | 9.1 | 2023-09-12 07:36:03 | Deep Dive |
| CVE-2021-36021 | Magento Commerce CMS Page Improper Input Validation Could Lead To Remote Code Execution | Adobe | Adobe Commerce | High | 7.2 | 2023-09-06 13:08:11 | Deep Dive |
| CVE-2021-36036 | Magento Commerce Media Gallery Upload Improper Access Control Could Lead To Remote Code Execution | Adobe | Adobe Commerce | High | 7.2 | 2023-09-06 13:08:11 | Deep Dive |
| CVE-2021-36023 | Magento Commerce Widgets Update Layout XML Injection Vulnerability Could Lead To Remote Code Execution | Adobe | Adobe Commerce | Critical | 9.1 | 2023-09-06 13:08:09 | Deep Dive |
| CVE-2023-40007 | WordPress CT Commerce Plugin <= 2.0.1 is vulnerable to Cross Site Scripting (XSS) | Ujwol Bastakoti | CT Commerce | Medium | 5.9 | 2023-09-06 08:29:57 | Deep Dive |
| CVE-2023-4531 | SQLi in Mestavs E-commerce Software | Mestav Software | E-commerce Software | Critical | 9.8 | 2023-09-05 18:33:36 | Deep Dive |
| CVE-2023-38207 | Adobe Commerce XML Injection (aka Blind XPath Injection) Arbitrary file system read | Adobe | Adobe Commerce | High | 7.5 | 2023-08-09 07:41:53 | Deep Dive |
| CVE-2023-38208 | Validate Your Inputs | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78) | Adobe | Magento Commerce | Critical | 9.1 | 2023-08-09 07:41:47 | Deep Dive |
| CVE-2023-38209 | Adobe Commerce Incorrect Authorization Security feature bypass | Adobe | Magento Commerce | Medium | 6.5 | 2023-08-09 07:41:46 | Deep Dive |
| CVE-2023-3653 | Stored XSS in Digital Ant E-Commerce Software | Digital Ant | E-Commerce Software | Medium | 5.4 | 2023-08-08 14:42:19 | Deep Dive |
| CVE-2023-3652 | Reflected XSS in Digital Ant E-Commerce Software | Digital Ant | E-Commerce Software | Medium | 6.1 | 2023-08-08 14:40:50 | Deep Dive |
| CVE-2023-3651 | SQLi in Digital Ant E-Commerce Software | Digital Ant | E-Commerce Software | Critical | 9.8 | 2023-08-08 14:39:15 | Deep Dive |
| CVE-2023-3898 | SQLi in mAyaNets E-Commerce Software | mAyaNet | E-Commerce Software | Critical | 9.8 | 2023-08-08 08:55:45 | Deep Dive |
| CVE-2023-37486 | Information Disclosure vulnerability in SAP Commerce (OCC API) | SAP_SE | SAP Commerce (OCC API) | Medium | 5.9 | 2023-08-08 00:56:52 | Deep Dive |
| CVE-2023-39439 | SAP Commerce accepts empty passphrases. | SAP_SE | SAP Commerce | High | 8.8 | 2023-08-08 00:49:02 | Deep Dive |
| CVE-2023-22248 | Adobe Commerce Incorrect Authorization Security feature bypass | Adobe | Magento Commerce | High | 7.5 | 2023-06-15 00:00:00 | Deep Dive |