| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-34254 | Adobe Commerce Improper Limitation of a Pathname to a Restricted Directory Arbitrary code execution | Adobe | Magento Commerce | 高危 | - | 2022-08-16 19:44:18 | Deep Dive |
| CVE-2022-34256 | Adobe Commerce Improper Authorization Privilege escalation | Adobe | Magento Commerce | High | 7.5 | 2022-08-16 19:43:54 | Deep Dive |
| CVE-2022-34258 | Adobe Commerce Stored XSS Arbitrary code execution | Adobe | Magento Commerce | Medium | 4.8 | 2022-08-16 19:43:31 | Deep Dive |
| CVE-2022-24086 | Adobe Commerce checkout improper input validation leads to remote code execution | Adobe | Magento Commerce | Critical | 9.8 | 2022-02-16 16:38:28 | Deep Dive |
| CVE-2021-39864 | Adobe Commerce Cross-Site Request Forgery (CSRF) Could Lead To Unauthorized Cart Addition | Adobe | Magento Commerce | Medium | 6.5 | 2021-10-15 14:21:43 | Deep Dive |
| CVE-2021-28567 | Magento Commerce improper authorization allows an authenticated user to perform certain functions without permission | Adobe | Magento Commerce | 中危 | - | 2021-09-08 16:19:58 | Deep Dive |
| CVE-2021-28566 | Magento Commerce information disclosure during upload action leveraging a specially crafted file | Adobe | Magento Commerce | Low | 3.7 | 2021-09-08 16:19:49 | Deep Dive |
| CVE-2021-36044 | Magento Commerce GraphQL Improper Input Validation Could Lead To Denial Of Service | Adobe | Magento Commerce | High | 7.5 | 2021-09-01 14:32:32 | Deep Dive |
| CVE-2021-36027 | Magento Commerce Stored Cross-site Scripting Vulnerability | Adobe | Magento Commerce | Medium | 6.5 | 2021-09-01 14:32:01 | Deep Dive |
| CVE-2021-36043 | Magento Commerce Authenticated Blind SSRF Could Lead To Remote Code Execution | Adobe | Magento Commerce | High | 8.0 | 2021-09-01 14:31:38 | Deep Dive |
| CVE-2021-36042 | Magento Commerce API File Option Upload Extension Improper Input Validation Vulnerability Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:31:25 | Deep Dive |
| CVE-2021-36030 | Magento Commerce Improper Input Validation During Checkout Process Could Lead To Privilege Escalation | Adobe | Magento Commerce | High | 7.5 | 2021-09-01 14:31:19 | Deep Dive |
| CVE-2021-36041 | Magento Commerce Improper Input Validation Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:31:14 | Deep Dive |
| CVE-2021-36040 | Magento Commerce Improper Input Validation Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:31:07 | Deep Dive |
| CVE-2021-36025 | Magento Commerce Customer Edition Improper Input Validation Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:31:02 | Deep Dive |
| CVE-2021-36020 | Magento Commerce XML Injection Vulnerability In The 'City' Field Could Lead To Remote Code Execution | Adobe | Magento Commerce | High | 8.2 | 2021-09-01 14:30:56 | Deep Dive |
| CVE-2021-36035 | Magento Commerce Stock Media Improper Input Validation Could Lead To Remote Code Execution | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:30:49 | Deep Dive |
| CVE-2021-36024 | Magento Commerce Improper Neutralization of Special Elements Used In A Command | Adobe | Magento Commerce | Critical | 9.1 | 2021-09-01 14:30:43 | Deep Dive |
| CVE-2021-36031 | Magento Commerce Path Traversal In `theme[preview_image]` Parameter Could Lead To Remote Code Execution | Adobe | Magento Commerce | High | 7.2 | 2021-09-01 14:30:35 | Deep Dive |
| CVE-2021-36039 | Magento Commerce `quoteId` parameter Incorrect Authorization Vulnerability Could Lead To Information Disclosure | Adobe | Magento Commerce | Medium | 6.5 | 2021-09-01 14:30:02 | Deep Dive |