Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7929) CVE-2019-7929 CWE-200 CWE-200 Medium Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7951) CVE-2019-7951 CWE-200 CWE-200 High Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-9591) CVE-2020-9591 CWE-200 CWE-200 High Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-28566) CVE-2021-28566 CWE-200 CWE-200 Low Magento Improper Access Control Vulnerability (CVE-2021-21020) CVE-2021-21020 CWE-284 CWE-284 Medium Magento Improper Access Control Vulnerability (CVE-2021-36036) CVE-2021-36036 CWE-284 CWE-284 High Magento Improper Authentication Vulnerability (CVE-2015-3457) CVE-2015-3457 CWE-287 CWE-287 Medium Magento Improper Authentication Vulnerability (CVE-2019-8108) CVE-2019-8108 CWE-287 CWE-287 Medium Magento Improper Authorization Vulnerability (CVE-2020-24402) CVE-2020-24402 CWE-285 CWE-285 Medium Magento Improper Authorization Vulnerability (CVE-2020-24403) CVE-2020-24403 CWE-285 CWE-285 Low Magento Improper Authorization Vulnerability (CVE-2020-24404) CVE-2020-24404 CWE-285 CWE-285 Low Magento Improper Authorization Vulnerability (CVE-2020-24405) CVE-2020-24405 CWE-285 CWE-285 Medium Magento Improper Authorization Vulnerability (CVE-2021-21022) CVE-2021-21022 CWE-285 CWE-285 Medium Magento Improper Authorization Vulnerability (CVE-2021-21026) CVE-2021-21026 CWE-285 CWE-285 Medium Magento Improper Authorization Vulnerability (CVE-2021-28563) CVE-2021-28563 CWE-285 CWE-285 Medium Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2015-1399) CVE-2015-1399 CWE-94 CWE-94 Medium Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-7871) CVE-2019-7871 CWE-94 CWE-94 High Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-7903) CVE-2019-7903 CWE-94 CWE-94 High Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-7932) CVE-2019-7932 CWE-94 CWE-94 High Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-7942) CVE-2019-7942 CWE-94 CWE-94 High Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-9664) CVE-2020-9664 CWE-94 CWE-94 Critical Magento Improper Input Validation Vulnerability (CVE-2015-6497) CVE-2015-6497 CWE-20 CWE-20 High Magento Improper Input Validation Vulnerability (CVE-2019-7885) CVE-2019-7885 CWE-20 CWE-20 High Magento Improper Input Validation Vulnerability (CVE-2019-7898) CVE-2019-7898 CWE-20 CWE-20 Medium Magento Improper Input Validation Vulnerability (CVE-2019-7899) CVE-2019-7899 CWE-20 CWE-20 Medium Magento Improper Input Validation Vulnerability (CVE-2021-28585) CVE-2021-28585 CWE-20 CWE-20 Medium Magento Improper Input Validation Vulnerability (CVE-2022-24086) CVE-2022-24086 CWE-20 CWE-20 Critical Magento Improper Input Validation Vulnerability (CVE-2022-42344) CVE-2022-42344 CWE-20 CWE-20 High Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-1398) CVE-2015-1398 CWE-22 CWE-22 Medium Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-7859) CVE-2019-7859 CWE-22 CWE-22 High Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-3717) CVE-2020-3717 CWE-22 CWE-22 Medium Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-9689) CVE-2020-9689 CWE-22 CWE-22 Medium Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-24406) CVE-2020-24406 CWE-22 CWE-22 Low Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-28584) CVE-2021-28584 CWE-22 CWE-22 High Magento Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-34254) CVE-2022-34254 CWE-22 CWE-22 High Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9758) CVE-2014-9758 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-10704) CVE-2016-10704 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7853) CVE-2019-7853 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7862) CVE-2019-7862 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7863) CVE-2019-7863 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7866) CVE-2019-7866 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7867) CVE-2019-7867 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7868) CVE-2019-7868 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7869) CVE-2019-7869 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7875) CVE-2019-7875 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7877) CVE-2019-7877 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7880) CVE-2019-7880 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7881) CVE-2019-7881 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7882) CVE-2019-7882 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7887) CVE-2019-7887 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7897) CVE-2019-7897 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7908) CVE-2019-7908 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7909) CVE-2019-7909 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7921) CVE-2019-7921 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7926) CVE-2019-7926 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7927) CVE-2019-7927 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7934) CVE-2019-7934 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7935) CVE-2019-7935 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7936) CVE-2019-7936 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7937) CVE-2019-7937 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7938) CVE-2019-7938 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7939) CVE-2019-7939 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7940) CVE-2019-7940 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7944) CVE-2019-7944 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7945) CVE-2019-7945 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8092) CVE-2019-8092 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8115) CVE-2019-8115 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8117) CVE-2019-8117 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8120) CVE-2019-8120 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8128) CVE-2019-8128 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8129) CVE-2019-8129 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8131) CVE-2019-8131 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8132) CVE-2019-8132 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8138) CVE-2019-8138 CWE-707 CWE-707 Medium Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8139) CVE-2019-8139 CWE-707 CWE-707 Medium 1...65666768...293 66 / 293
