| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-40502 | SAP Commerce 授权问题漏洞 | SAP SE | SAP Commerce | 高危 | - | 2021-11-10 15:24:42 | Deep Dive |
| CVE-2021-26610 | godomall5 remote code execution vulnerability | NHN COMMERCE | godomall5 Std, godomall5 Pro | High | 7.2 | 2021-10-27 00:45:20 | Deep Dive |
| CVE-2021-39864 | Adobe Commerce Cross-Site Request Forgery (CSRF) Could Lead To Unauthorized Cart Addition | Adobe | Magento Commerce | Medium | 6.5 | 2021-10-15 14:21:43 | Deep Dive |
| CVE-2021-28567 | Magento Commerce improper authorization allows an authenticated user to perform certain functions without permission | Adobe | Magento Commerce | 中危 | - | 2021-09-08 16:19:58 | Deep Dive |
| CVE-2021-28566 | Magento Commerce information disclosure during upload action leveraging a specially crafted file | Adobe | Magento Commerce | Low | 3.7 | 2021-09-08 16:19:49 | Deep Dive |
| CVE-2021-36044 | Magento Commerce GraphQL Improper Input Validation Could Lead To Denial Of Service | Adobe | Magento Commerce | High | 7.5 | 2021-09-01 14:32:32 | Deep Dive |
| CVE-2021-36027 | Magento Commerce Stored Cross-site Scripting Vulnerability | Adobe | Magento Commerce | Medium | 6.5 | 2021-09-01 14:32:01 | Deep Dive |
| CVE-2021-36043 | Magento Commerce Authenticated Blind SSRF Could Lead To Remote Code Execution | Adobe | Magento Commerce | High | 8.0 | 2021-09-01 14:31:38 | Deep Dive |
| CVE-2021-36042 | Magento Commerce API File Option Upload Extension Improper Input Validation Vulnerability Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:31:25 | Deep Dive |
| CVE-2021-36030 | Magento Commerce Improper Input Validation During Checkout Process Could Lead To Privilege Escalation | Adobe | Magento Commerce | High | 7.5 | 2021-09-01 14:31:19 | Deep Dive |
| CVE-2021-36041 | Magento Commerce Improper Input Validation Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:31:14 | Deep Dive |
| CVE-2021-36040 | Magento Commerce Improper Input Validation Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:31:07 | Deep Dive |
| CVE-2021-36025 | Magento Commerce Customer Edition Improper Input Validation Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:31:02 | Deep Dive |
| CVE-2021-36020 | Magento Commerce XML Injection Vulnerability In The 'City' Field Could Lead To Remote Code Execution | Adobe | Magento Commerce | High | 8.2 | 2021-09-01 14:30:56 | Deep Dive |
| CVE-2021-36035 | Magento Commerce Stock Media Improper Input Validation Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:30:49 | Deep Dive |
| CVE-2021-36024 | Magento Commerce Improper Neutralization of Special Elements Used In A Command | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:30:43 | Deep Dive |
| CVE-2021-36031 | Magento Commerce Path Traversal In `theme[preview_image]` Parameter Could Lead To Remote Code Execution | Adobe | Magento Commerce | High | 7.2 | 2021-09-01 14:30:35 | Deep Dive |
| CVE-2021-36039 | Magento Commerce `quoteId` parameter Incorrect Authorization Vulnerability Could Lead To Information Disclosure | Adobe | Magento Commerce | Medium | 6.5 | 2021-09-01 14:30:02 | Deep Dive |
| CVE-2021-36029 | Magento Commerce Improper Authorization Vulnerability Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:29:55 | Deep Dive |
| CVE-2021-36026 | Magento Commerce Stored Cross-site Scripting Vulnerability | Adobe | Magento Commerce | Medium | 6.5 | 2021-09-01 14:29:48 | Deep Dive |