CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

74 matches found

RedhatCVE•added 2026/01/07 9:36 a.m.•6 views

CVE-2019-7886

A cryptograhic flaw exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. A weak cryptograhic mechanism is used to generate the intialization vector in multiple security relevant contexts...

7.5CVSS6.7AI score0.00101EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:34 a.m.•8 views

CVE-2019-7896

A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An authenticated user with administrator privileges to layouts can execute arbitrary code through a combination of product import, crafted csv file and XML layout...

7.2CVSS8AI score0.00897EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:34 a.m.•4 views

CVE-2019-7852

A path disclosure vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. Requests for a specific file path could result in a redirect to the URL of the Magento admin panel, disclosing its location to potentially unauthorized parties...

5.3CVSS6.6AI score0.00059EPSS

Exploits0References1

NVD•added 2025/11/06 9:15 p.m.•2 views

CVE-2025-64174

Magento-lts is a long-term support alternative to Magento Community Edition CE. Versions 20.15.0 and below are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an admin with direct database access or the admin notification feed source to inject malicious scripts...

4.8CVSS0.00034EPSS

Exploits1References2

Tenable Nessus•added 2025/10/28 12:0 a.m.•7 views

Adobe Commerce/Magento Open Source Multiple Vulnerabilities (APSB25-94)

The version of Adobe Commerce/Magento Open Source installed on the remote host it is, therefore, affected by multiple vulnerabilities as referenced in the APSB25-94 advisory. - Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an...

8.1CVSS5.7AI score0.00214EPSS

Exploits0References6