Commerce Webhooks Security Vulnerabilities and Issues — Commerce Webhooks CVE List

Lucene search

AdobeCommerce Webhooks

3 matches found

CVE•added 2024/06/13 9:15 a.m.•246 views

CVE-2024-34102

Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could result in arbitrary code execution. An attacker could exploit this vulnerability by sending a crafted XML document that r...

9.8CVSS9.6AI score0.94335EPSS

CVE•added 2024/06/13 9:15 a.m.•59 views

CVE-2024-34107

Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and view minor unauthorised information. Exploit...

9.8CVSS7.2AI score0.00195EPSS

CVE•added 2024/06/13 9:15 a.m.•55 views

CVE-2024-34108

Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but admin privileges are...

9.1CVSS8.6AI score0.0199EPSS