Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Adobe Commerce — Vulnerabilities & Security Advisories 154

All 154 CVE vulnerabilities found in Adobe Commerce, with AI-generated Chinese analysis, references, and POCs.

Vendor: Adobe

CVE IDTitleCVSSSeverityPublished
CVE-2026-21291 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 4.8 Medium2026-03-11
CVE-2026-21293 Adobe Commerce | Server-Side Request Forgery (SSRF) (CWE-918) CWE-918 5.5 Medium2026-03-11
CVE-2026-21282 Adobe Commerce | Improper Input Validation (CWE-20) CWE-20 5.3 Medium2026-03-11
CVE-2026-21286 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 5.3 Medium2026-03-11
CVE-2026-21294 Adobe Commerce | Server-Side Request Forgery (SSRF) (CWE-918) CWE-918 5.5 Medium2026-03-11
CVE-2026-21297 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 4.3 Medium2026-03-11
CVE-2026-21284 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.1 High2026-03-11
CVE-2026-21359 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 4.7 Medium2026-03-11
CVE-2026-21309 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 7.5 High2026-03-11
CVE-2026-21292 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 5.4 Medium2026-03-11
CVE-2026-21310 Adobe Commerce | Improper Input Validation (CWE-20) CWE-20 5.3 Medium2026-03-11
CVE-2026-21285 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 4.3 Medium2026-03-11
CVE-2026-21290 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.7 High2026-03-11
CVE-2026-21361 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.1 High2026-03-11
CVE-2026-21289 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 7.5 High2026-03-11
CVE-2026-21360 Adobe Commerce | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) CWE-22 6.8 Medium2026-03-11
CVE-2026-21296 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 4.3 Medium2026-03-11
CVE-2026-21311 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.0 High2026-03-11
CVE-2026-21295 Adobe Commerce | URL Redirection to Untrusted Site ('Open Redirect') (CWE-601) CWE-601 3.1 Low2026-03-11
CVE-2025-54267 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 6.5 Medium2025-10-14
CVE-2025-54266 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 4.8 Medium2025-10-14
CVE-2025-54263 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 8.1 High2025-10-14
CVE-2025-54264 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.1 High2025-10-14
CVE-2025-54265 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 5.9 Medium2025-10-14
CVE-2025-54236 Adobe Commerce | Improper Input Validation (CWE-20) CWE-20 9.1 Critical2025-09-09
CVE-2025-49556 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 7.5 High2025-08-12
CVE-2025-49557 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.7 High2025-08-12
CVE-2025-49558 Adobe Commerce | Time-of-check Time-of-use (TOCTOU) Race Condition (CWE-367) CWE-367 5.9 Medium2025-08-12
CVE-2025-49554 Adobe Commerce | Improper Input Validation (CWE-20) CWE-20 7.5 High2025-08-12
CVE-2025-49559 Adobe Commerce | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) CWE-22 5.3 Medium2025-08-12

All 154 known CVE vulnerabilities affecting Adobe Commerce with full Chinese analysis, references, and POCs where available.