|
318271
|
4.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a…
|
NVD-CWE-noinfo
|
CVE-2024-45149
|
2024-10-12 07:12 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318272
|
2.7 |
LOW
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An admin attacker …
|
NVD-CWE-noinfo
|
CVE-2024-45135
|
2024-10-12 07:12 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318273
|
2.7 |
LOW
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass. An admin attacker cou…
|
NVD-CWE-noinfo
|
CVE-2024-45134
|
2024-10-12 07:12 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318274
|
2.7 |
LOW
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass. An admin attacker cou…
|
NVD-CWE-Other
|
CVE-2024-45133
|
2024-10-12 07:12 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318275
|
4.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in Privilege escalation. A low-privileged attack…
|
NVD-CWE-noinfo
|
CVE-2024-45129
|
2024-10-12 07:09 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318276
|
4.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a…
|
NVD-CWE-noinfo
|
CVE-2024-45130
|
2024-10-12 07:08 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318277
|
4.8 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an admin attacker to inject malic…
|
CWE-79
Cross-site Scripting
|
CVE-2024-45127
|
2024-10-12 07:06 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318278
|
4.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged a…
|
CWE-863
Incorrect Authorization
|
CVE-2024-45125
|
2024-10-12 07:05 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318279
|
5.3 |
MEDIUM
Network
|
adobe
|
commerce
magento
commerce_b2b
|
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could …
|
NVD-CWE-noinfo
|
CVE-2024-45124
|
2024-10-12 07:05 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318280
|
5.9 |
MEDIUM
Network
|
syracom
|
secure_login
|
The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows remote attackers to easily brute-force the 2FA PIN via the plugins/servlet/twofactor/public/pinvalidat…
|
NVD-CWE-noinfo
|
CVE-2024-48942
|
2024-10-12 06:36 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
