Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Adobe Commerce — Vulnerabilities & Security Advisories 154

All 154 CVE vulnerabilities found in Adobe Commerce, with AI-generated Chinese analysis, references, and POCs.

Vendor: Adobe

CVE IDTitleCVSSSeverityPublished
CVE-2025-24423 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 4.3 Medium2025-02-11
CVE-2025-24418 Adobe Commerce | Improper Authorization (CWE-285) CWE-285 8.1 High2025-02-11
CVE-2025-24406 Adobe Commerce | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) CWE-22 7.5 High2025-02-11
CVE-2025-24417 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.7 High2025-02-11
CVE-2025-24409 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 8.2 High2025-02-11
CVE-2025-24425 Adobe Commerce | Business Logic Errors (CWE-840) CWE-840 5.3 Medium2025-02-11
CVE-2025-24421 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 4.3 Medium2025-02-11
CVE-2025-24412 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.7 High2025-02-11
CVE-2025-24426 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 6.5 Medium2025-02-11
CVE-2025-24427 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 6.5 Medium2025-02-11
CVE-2025-24428 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 5.4 Medium2025-02-11
CVE-2025-24410 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 8.7 High2025-02-11
CVE-2025-24408 Adobe Commerce | Information Exposure (CWE-200) CWE-200 6.5 Medium2025-02-11
CVE-2025-24435 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 4.3 Medium2025-02-11
CVE-2024-49521 Adobe Commerce | Server-Side Request Forgery (SSRF) (CWE-918) CWE-918 7.7 High2024-11-12
CVE-2024-45127 Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) CWE-79 4.8 Medium2024-10-10
CVE-2024-45128 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 5.4 Medium2024-10-10
CVE-2024-45133 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 2.7 Low2024-10-10
CVE-2024-45124 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 5.3 Medium2024-10-10
CVE-2024-45123 Adobe Commerce | Cross-site Scripting (Reflected XSS) (CWE-79) CWE-79 6.1 Medium2024-10-10
CVE-2024-45121 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 4.3 Medium2024-10-10
CVE-2024-45117 Adobe Commerce | Improper Input Validation (CWE-20) CWE-20 7.6 High2024-10-10
CVE-2024-45115 Adobe Commerce | Improper Authentication (CWE-287) CWE-287 9.8 Critical2024-10-10
CVE-2024-45116 Adobe Commerce | Cross-site Scripting (XSS) (CWE-79) CWE-79 8.1 High2024-10-10
CVE-2024-45119 Adobe Commerce | Server-Side Request Forgery (SSRF) (CWE-918) CWE-918 4.9 Medium2024-10-10
CVE-2024-45122 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 4.3 Medium2024-10-10
CVE-2024-45120 Adobe Commerce | Time-of-check Time-of-use (TOCTOU) Race Condition (CWE-367) CWE-367 3.1 Low2024-10-10
CVE-2024-45135 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 2.7 Low2024-10-10
CVE-2024-45130 Adobe Commerce | Improper Access Control (CWE-284) CWE-284 4.3 Medium2024-10-10
CVE-2024-45132 Adobe Commerce | Incorrect Authorization (CWE-863) CWE-863 6.5 Medium2024-10-10

All 154 known CVE vulnerabilities affecting Adobe Commerce with full Chinese analysis, references, and POCs where available.