| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-29287 | Adobe Commerce Information Exposure Security feature bypass | Adobe | Magento Commerce | Medium | 5.3 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29288 | Adobe Commerce | Incorrect Authorization (CWE-863) | Adobe | Adobe Commerce | Medium | 4.3 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29289 | Adobe Commerce XML Injection Security feature bypass | Adobe | Magento Commerce | Medium | 6.5 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29290 | Adobe Commerce Guest Cart Shipping Address Overwrite IDOR | Adobe | Magento Commerce | Medium | 5.3 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29291 | Server Side Request Forgery (SSRF) in USPS carrier integration configuration | Adobe | Magento Commerce | Medium | 4.9 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29292 | Server Side Request Forgery (SSRF) in FedEx carrier integration configuration | Adobe | Magento Commerce | Medium | 4.9 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29293 | Adobe Commerce | Improper Input Validation (CWE-20) | Adobe | Adobe Commerce | Low | 2.7 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29294 | Bypass Purchase Order Approval using Company User in Adobe Commerce B2B | Adobe | Magento Commerce | Medium | 4.3 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29295 | Insecure Direct Object Reference (IDOR) in Create Quote Function | Adobe | Magento Commerce | Medium | 4.3 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29296 | [Cloud] Customer suspects IDOR vulnerability | Adobe | Magento Commerce | Medium | 4.3 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2023-29297 | Admin-to-admin stored XSS via cache poisoning | Adobe | Magento Commerce | Critical | 9.1 | 2023-06-15 00:00:00 | Deep Dive |
| CVE-2021-4375 | Welcart e-Commerce < 2.2.8 - Missing Capabilities Check to Information Disclosure | uscnanbu | Welcart e-Commerce | Medium | 4.3 | 2023-06-07 01:51:46 | Deep Dive |
| CVE-2021-4355 | Welcart e-Commerce < 2.2.8 - Missing Capabilities Check to Information Disclosure | uscnanbu | Welcart e-Commerce | High | 7.5 | 2023-06-07 01:51:24 | Deep Dive |
| CVE-2023-22705 | WordPress Welcart e-Commerce Plugin <= 2.8.10 is vulnerable to Cross Site Scripting (XSS) | Collne Inc. | Welcart e-Commerce | High | 7.1 | 2023-03-29 19:32:54 | Deep Dive |
| CVE-2023-22247 | Adobe Commerce XML Injection Arbitrary file system read | Adobe | Magento Commerce | High | 7.5 | 2023-03-27 00:00:00 | Deep Dive |
| CVE-2023-22249 | Adobe Commerce Stored XSS Arbitrary code execution | Adobe | Magento Commerce | Medium | 4.8 | 2023-03-27 00:00:00 | Deep Dive |
| CVE-2023-22250 | Adobe Commerce Improper Access Control Security feature bypass | Adobe | Magento Commerce | Medium | 5.3 | 2023-03-27 00:00:00 | Deep Dive |
| CVE-2023-22251 | Adobe Commerce Incorrect Authorization Security feature bypass | Adobe | Magento Commerce | Medium | 4.3 | 2023-03-27 00:00:00 | Deep Dive |
| CVE-2023-1569 | SourceCodester E-Commerce System cross site scripting | SourceCodester | E-Commerce System | Low | 3.5 | 2023-03-22 14:00:07 | Deep Dive |
| CVE-2023-1557 | SourceCodester E-Commerce System Username access control | SourceCodester | E-Commerce System | Medium | 6.3 | 2023-03-22 10:31:04 | Deep Dive |