Vulners
Lucene search
The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B arises from incorrect restrictions on the path to the restricted catalog. This allows attackers to gain access and modify arbitrary files.
🗓️ 13 Feb 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec🔗 bdu.fstec.ru👁 1 Views
| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
 | CVE-2025-24406 | 11 Feb 202518:18 | – | circl |
 | Adobe Commerce 路径遍历漏洞 | 11 Feb 202500:00 | – | cnnvd |
 | Adobe Commerce Path Traversal Vulnerability (CNVD-2025-05713) | 17 Feb 202500:00 | – | cnvd |
 | CVE-2025-24406 | 11 Feb 202517:37 | – | cve |
 | CVE-2025-24406 Adobe Commerce | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) | 11 Feb 202517:37 | – | cvelist |
 | EUVD-2025-3687 | 3 Oct 202520:07 | – | euvd |
 | Adobe Commerce Path Traversal | 11 Feb 202518:31 | – | github |
 | Vulnerabilities fixed in Adobe Commerce and Magento | 13 Feb 202506:46 | – | ncsc |
 | CVE-2025-24406 | 11 Feb 202518:15 | – | nvd |
 | GHSA-954P-FF72-327W Adobe Commerce Path Traversal | 11 Feb 202518:31 | – | osv |
10
Node
OROROROROROROROROROROROROROR
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
13 Feb 2025 00:00Current
5.6Medium risk
Vulners AI Score5.6
CVSS 37.5
CVSS 27.8
EPSS0.00235