| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-21013 | Magento Commerce Insecure Direct Object Reference Could Lead To Information Disclosure | Adobe | Magento Commerce | High | 8.1 | 2021-01-13 22:35:54 | Deep Dive |
| CVE-2021-21012 | Magento Commerce Insecure Direct Object Reference Vulnerability Could Lead To Sensitive Information Disclosure | Adobe | Magento Commerce | 中危 | - | 2021-01-13 22:35:39 | Deep Dive |
| CVE-2021-21445 | SAP Commerce Cloud 环境问题漏洞 | SAP SE | SAP Commerce Cloud | 中危 | - | 2021-01-12 14:42:03 | Deep Dive |
| CVE-2020-14274 | HCL Commerce 信息泄露漏洞 | - | HCL Commerce | 高危 | - | 2021-01-12 14:29:53 | Deep Dive |
| CVE-2020-14275 | HCL Commerce 安全漏洞 | - | HCL Commerce | 超危 | - | 2021-01-12 14:26:58 | Deep Dive |
| CVE-2020-26810 | SAP Commerce Cloud 安全漏洞 | SAP SE | SAP Commerce Cloud (Accelerator Payment Mock) | 高危 | - | 2020-11-10 16:20:28 | Deep Dive |
| CVE-2020-26811 | SAP Commerce Cloud 代码问题漏洞 | SAP SE | SAP Commerce Cloud (Accelerator Payment Mock) | 中危 | - | 2020-11-10 16:12:03 | Deep Dive |
| CVE-2020-26809 | SAP Commerce Cloud 授权问题漏洞 | SAP SE | SAP Commerce Cloud | 中危 | - | 2020-11-10 16:10:56 | Deep Dive |
| CVE-2020-24404 | Incorrect permissions in Integrations component could lead to unauthorized deletion of cmsPages via REST API | Adobe | Magento Commerce | Low | 2.7 | 2020-11-09 00:40:05 | Deep Dive |
| CVE-2020-24407 | Arbitrary code execution via file import functionality | Adobe | Magento Commerce | Critical | 9.1 | 2020-11-09 00:39:56 | Deep Dive |
| CVE-2020-24406 | Document root path disclosure on Maintenance page | Adobe | Magento Commerce | Low | 3.7 | 2020-11-09 00:39:49 | Deep Dive |
| CVE-2020-24405 | Incorrect permissions in Inventory module could lead to unauthorized modification of inventory stock data | Adobe | Magento Commerce | Medium | 4.3 | 2020-11-09 00:39:43 | Deep Dive |
| CVE-2020-24403 | Incorrect permissions could lead to unauthorized modification of inventory source data via REST API | Adobe | Magento Commerce | Low | 2.7 | 2020-11-09 00:39:38 | Deep Dive |
| CVE-2020-24401 | Incorrect permissions following the deletion of a user role or deactivation of a user | Adobe | Magento Commerce | Medium | 6.5 | 2020-11-09 00:39:30 | Deep Dive |
| CVE-2020-24402 | Incorrect permissions in the Integrations component could lead to unauthorized deletion of customer details via REST API | Adobe | Magento Commerce | Medium | 4.9 | 2020-11-09 00:39:15 | Deep Dive |
| CVE-2020-24400 | SQL injection allows arbitrary read from database | Adobe | Magento Commerce | High | 7.1 | 2020-11-09 00:39:02 | Deep Dive |
| CVE-2020-16943 | Dynamics 365 Commerce Elevation of Privilege Vulnerability | Microsoft | Dynamics 365 Commerce version 10.0.12 | Medium | 6.5 | 2020-10-16 22:17:59 | Deep Dive |
| CVE-2020-24408 | Stored XSS in customer address upload feature | Adobe | Magento Commerce | Medium | 6.1 | 2020-10-16 14:03:11 | Deep Dive |
| CVE-2020-6363 | SAP Commerce Cloud 代码问题漏洞 | SAP SE | SAP Commerce Cloud | 中危 | - | 2020-10-15 01:53:18 | Deep Dive |
| CVE-2020-6272 | SAP 跨站脚本漏洞 | SAP SE | SAP Commerce Cloud | 中危 | - | 2020-10-15 01:46:38 | Deep Dive |