Magento Community-Edition vulnerabilities

CVE-2019-7139 [CRITICAL] CWE-89 Magento 2 Community Edition SQLi Vulnerability Magento 2 Community Edition SQLi Vulnerability An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.

CVE-2021-21025 [CRITICAL] CWE-91 Magento XPath Injection Magento XPath Injection Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to XML injection in the product layout updates. Successful exploitation could lead to arbitrary code execution by an authenticated attacker. Access to the admin console is required for successful exploitation.

CVE-2020-9582 [CRITICAL] CWE-78 Magento command injection vulnerability Magento command injection vulnerability Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.

CVE-2020-9579 [CRITICAL] Magento Security mitigation bypass vulnerability Magento Security mitigation bypass vulnerability Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a security mitigation bypass vulnerability. Successful exploitation could lead to arbitrary code execution.

CVE-2020-9585 [CRITICAL] Magento Defense-in-depth security mitigation vulnerability Magento Defense-in-depth security mitigation vulnerability Magento versions 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a defense-in-depth security mitigation vulnerability. Successful exploitation could lead to arbitrary code execution.

CVE-2021-21018 [CRITICAL] CWE-78 Magento OS Command Injection Magento OS Command Injection Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to OS command injection via the scheduled operation module. Successful exploitation could lead to arbitrary code execution by an authenticated attacker. Access to the admin console is required for successful exploitation.

CVE-2020-3718 [CRITICAL] Magento security bypass vulnerability Magento security bypass vulnerability Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a security bypass vulnerability. Successful exploitation could lead to arbitrary code execution.

CVE-2019-8136 [CRITICAL] Magento 2 Community Edition Insecure Component Magento 2 Community Edition Insecure Component An insecure component vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. Magento 2 codebase leveraged outdated versions of HTTP specification abstraction implemented in symphony component.

CVE-2020-3716 [CRITICAL] CWE-502 Magento deserialization vulnerability Magento deserialization vulnerability Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.

CVE-2019-8144 [CRITICAL] Magento 2 Community Edition RCE Vulnerability Magento 2 Community Edition RCE Vulnerability A remote code execution vulnerability exists in Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An unauthenticated user can insert a malicious payload through PageBuilder template methods.

CVE-2020-24407 [CRITICAL] CWE-434 Magento 2 Community Edition RCE via Unsafe File Upload Magento 2 Community Edition RCE via Unsafe File Upload Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an unsafe file upload vulnerability that could result in arbitrary code execution. This vulnerability could be abused by authenticated users with administrative permissions to the System/Data and Transfer/Import components.

CVE-2019-8158 [CRITICAL] CWE-91 Magento 2 Community Edition XML Injection Magento 2 Community Edition XML Injection An XPath entity injection vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An attacker can craft a GET request to page cache block rendering module that gets passed to XML data processing engine without validation. The crafted key/value GET request data allows an attacker to limited access to underlying XML data. As per [the Magento Rel

CVE-2021-36033 [CRITICAL] CWE-91 Magento XML Injection vulnerability in the Widgets Module Magento XML Injection vulnerability in the Widgets Module Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an XML Injection vulnerability in the Widgets Module. An attacker with admin privileges can trigger a specially crafted script to achieve remote code execution.

CVE-2021-36024 [HIGH] CWE-77 Magento is affected by an os command injection via the Data collection endpoint Magento is affected by an os command injection via the Data collection endpoint Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an Improper Neutralization of Special Elements Used In A Command via the Data collection endpoint. An attacker with admin privileges can upload a specially crafted file to achieve remote code executio

CVE-2019-8112 [HIGH] CWE-345 Magento 2 Community Edition Security Bypass Magento 2 Community Edition Security Bypass A security bypass vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An unauthenticated user can bypass the email confirmation mechanism via GET request that captures relevant account data obtained from the POST response related to new user creation.

CVE-2021-21030 [HIGH] CWE-79 Magento stored cross-site scripting (XSS) in the customer address upload feature Magento stored cross-site scripting (XSS) in the customer address upload feature Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to a stored cross-site scripting (XSS) in the customer address upload feature. Successful exploitation could lead to arbitrary JavaScript execution in the victim's browser. Exploitation of this issue requires

CVE-2019-7859 [HIGH] CWE-22 Magento 2 Community Edition Path Traversal Vulnerability Magento 2 Community Edition Path Traversal Vulnerability A path traversal vulnerability in the WYSIWYG editor for Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 could result in unauthorized access to uploaded images due to insufficient access control.

CVE-2019-7951 [HIGH] CWE-200 Magento 2 Community Edition Information Leak Magento 2 Community Edition Information Leak An information leakage vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. A SOAP web service endpoint does not properly enforce parameters related to access control. This could be abused to leak customer information via crafted SOAP requests.

CVE-2021-36044 [HIGH] CWE-20 Magento affected by a server-side denial-of-service using a GraphQL field Magento affected by a server-side denial-of-service using a GraphQL field Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an improper input validation vulnerability. An unauthenticated attacker could abuse this vulnerability to cause a server-side denial-of-service using a GraphQL field.

CVE-2019-7915 [HIGH] Magento 2 Community Edition DoS vulnerability Magento 2 Community Edition DoS vulnerability A denial-of-service vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. Under certain conditions, an unauthenticated attacker could force the Magento store's full page cache to serve a 404 page to customers.