Feed live

Magento vulnerabilities - every known CVE affecting Magento and Adobe Commerce

Name: AskarLabs CMS CVE Database
License: https://creativecommons.org/licenses/by/4.0/
Keywords: CVE, vulnerability, CMS, WordPress, Joomla, Drupal, plugin, theme, security

Every CVE that affects Magento and Adobe Commerce. Scored and updated from the official NVD feed.

Total CVEs tracked

335,499

All time

Critical · Active

10,538

CVSS ≥ 9.0

New · 14 days

707

Newly disclosed

Feed last synced

6 hrs ago

Data freshness

Showing 61–67 CVEs

Sorted by Published · Newest first

CVE ID	Severity	CVSS	Title	Published
CVE-2021-21020	medium	5.3/10	Magento Commerce Improper Access Control Vulnerability	Feb 11, 2021 5y ago
CVE-2021-21019	critical	9.1/10	Magento Commerce XML Injection Could Lead To Remote Code Execution	Feb 11, 2021 5y ago
CVE-2021-21015	high	8.0/10	Magento Commerce Unauthorized Data Modification Could Lead to Arbitrary Code Execution	Feb 11, 2021 5y ago
CVE-2021-21031	medium	5.6/10	Magento Commerce Failure To Invalidate User Session Could Lead To Unauthorized Access	Feb 11, 2021 5y ago
CVE-2021-21013	high	8.1/10	Magento Commerce Insecure Direct Object Reference Could Lead To Information Disclosure	Jan 13, 2021 5y ago
CVE-2021-21012	medium	5.3/10	Magento Commerce Insecure Direct Object Reference Vulnerability Could Lead To Sensitive Information Disclosure	Jan 13, 2021 5y ago
CVE-2020-15244	high	8.0/10	RCE in Magento	Oct 21, 2020 5y ago