VYPR
Vendor

Magento

Products
7
CVEs
42
Across products
48
Status
Private

Products

7

Recent CVEs

42
View all 42 CVEs →
  • CVE-2016-4010CriJan 23, 2017
    risk 0.74cvss 9.8epss 0.93

    Magento CE and EE before 2.0.6 allows remote attackers to conduct PHP objection injection attacks and execute arbitrary PHP code via crafted serialized shopping cart data.

  • CVE-2015-8707CriSep 26, 2017
    risk 0.64cvss 9.8epss 0.01

    Password reset tokens in Magento CE before 1.9.2.2, and Magento EE before 1.14.2.2 are passed via a GET request and not canceled after use, which allows remote attackers to obtain user passwords via a crafted external service with access to the referrer field.

  • CVE-2016-6485HigMar 1, 2017
    risk 0.49cvss 7.5epss 0.01

    The __construct function in Framework/Encryption/Crypt.php in Magento 2 uses the PHP rand function to generate a random number for the initialization vector, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by guessing the value.

  • CVE-2025-23465HigMar 3, 2025
    risk 0.46cvss 7.1epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in magent Vampire Character Manager vampire-character allows Reflected XSS.This issue affects Vampire Character Manager: from n/a through <= 2.13.

  • CVE-2016-10704MedDec 30, 2017
    risk 0.40cvss 6.1epss 0.01

    Magento Community Edition and Enterprise Edition before 2.0.10 and 2.1.x before 2.1.2 have XSS via e-mail templates that are mishandled during a preview, aka APPSEC-1503.

  • CVE-2014-9758MedSep 20, 2017
    risk 0.40cvss 6.1epss 0.01

    Cross-site scripting (XSS) vulnerability in Magento E-Commerce Platform 1.9.0.1.

  • CVE-2016-2212MedApr 15, 2016
    risk 0.35cvss 5.3epss 0.03

    The getOrderByStatusUrlKey function in the Mage_Rss_Helper_Order class in app/code/core/Mage/Rss/Helper/Order.php in Magento Enterprise Edition before 1.14.2.3 and Magento Community Edition before 1.9.2.3 allows remote attackers to obtain sensitive order information via the…

  • CVE-2015-1397Apr 29, 2015
    risk 0.08cvss epss 0.57

    SQL injection vulnerability in the getCsvFile function in the Mage_Adminhtml_Block_Widget_Grid class in Magento Community Edition (CE) 1.9.1.0 and Enterprise Edition (EE) 1.14.1.0 allows remote administrators to execute arbitrary SQL commands via the popularity[field_expr]…

  • CVE-2019-7139Apr 10, 2019
    risk 0.05cvss epss 0.15

    An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.

  • CVE-2009-0541Feb 25, 2009
    risk 0.03cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in Magento 1.2.0 and 1.2.1.1 allow remote attackers to inject arbitrary web script or HTML via (1) the username field in an admin/ request to index.php, possibly related to the login[username] parameter and the…

  • CVE-2015-3457Apr 29, 2015
    risk 0.02cvss epss 0.25

    Magento Community Edition (CE) 1.9.1.0 and Enterprise Edition (EE) 1.14.1.0 allow remote attackers to bypass authentication via the forwarded parameter.

  • CVE-2015-1399Apr 29, 2015
    risk 0.01cvss epss 0.10

    PHP remote file inclusion vulnerability in the fetchView function in the Mage_Core_Block_Template_Zend class in Magento Community Edition (CE) 1.9.1.0 and Enterprise Edition (EE) 1.14.1.0 allows remote administrators to execute arbitrary PHP code via a URL in unspecified vectors…

  • CVE-2015-1398Apr 29, 2015
    risk 0.01cvss epss 0.14

    Multiple directory traversal vulnerabilities in Magento Community Edition (CE) 1.9.1.0 and Enterprise Edition (EE) 1.14.1.0 allow remote authenticated users to include and execute certain PHP files via (1) .. (dot dot) sequences in the PATH_INFO to index.php or (2) vectors…

  • CVE-2021-21064Feb 25, 2021
    risk 0.00cvss epss 0.09

    Magento UPWARD-php version 1.1.4 (and earlier) is affected by a Path traversal vulnerability in Magento UPWARD Connector version 1.1.2 (and earlier) due to the upload feature. An attacker could potentially exploit this vulnerability to upload a malicious YAML file that can…

  • CVE-2014-1634Mar 9, 2020
    risk 0.00cvss epss 0.01

    SQL Injection exists in Advanced Newsletter Magento extension before 2.3.5 via the /store/advancednewsletter/index/subscribeajax/an_category_id/ PATH_INFO.

  • CVE-2012-6091Feb 13, 2020
    risk 0.00cvss epss 0.02

    Zend_XmlRpc Class in Magento before 1.7.0.2 contains an information disclosure vulnerability.

  • CVE-2019-8155Nov 5, 2019
    risk 0.00cvss epss 0.01

    Magento prior to 1.9.4.3 and prior to 1.14.4.3 included a user's CSRF token in the URL of a GET request. This could be exploited by an attacker with access to network traffic to perform unauthorized actions.

  • CVE-2019-8125Nov 5, 2019
    risk 0.00cvss epss 0.02

    A remote code execution vulnerability exists in Magento 1 prior to 1.9.x and 1.14.x. An authenticated admin user can modify configuration parameters via crafted support configuration. The modification can lead to remote code execution.

  • CVE-2019-8116Nov 5, 2019
    risk 0.00cvss epss 0.02

    Insecure authentication and session management vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An unauthenticated user can leverage a guest session id value following a successful login to gain access to customer account index page.

  • CVE-2019-8091Nov 5, 2019
    risk 0.00cvss epss 0.02

    A remote code execution vulnerability exists in Magento 1 prior to 1.9.4.3 and 1.14.4.3. An authenticated admin user with privileges to access product attributes can leverage layout updates to trigger remote code execution.