Vulnerabilities for platform

Vulnerabilities for products matching "platform"

Found 9 matching products. Filters apply to all results.

You can search for specific versions with /product/platform/1.2.3

pega / platform

8 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2023-50166	Medium	January 31, 2024 1/31/24	>= 8.5.4 <= 8.8.3
CVE-2023-50165	High	January 31, 2024 1/31/24	>= 8.2.1 <= 23.1.0
CVE-2023-32089	Low	October 18, 2023 10/18/23	>= 8.1.0 <= 8.8.2
CVE-2023-32088	Low	October 18, 2023 10/18/23	>= 8.8.0 < 8.8.3 >= 8.1.0 < 8.7.5
CVE-2023-32087	Low	October 18, 2023 10/18/23	>= 8.8.0 < 8.8.3 >= 8.1.0 < 8.7.5
CVE-2019-16374	Critical	August 13, 2020 8/13/20	<= 8.2.1
CVE-2020-8775	High	April 29, 2020 4/29/20	< 8.2.6
CVE-2020-8773	High	April 29, 2020 4/29/20	< 8.2.6

eclipse / platform

1 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2020-27225	High		March 9, 2021 3/9/21	<= 4.18

oro / platform

6 vulnerabilities found

Title	Severity	Date	Affected Version
OroPlatform Forced Redirect to External Website	Medium	May 20, 2024 5/20/24	>= 1.7.0 < 1.7.4
CVE-2023-45824	Low	March 25, 2024 3/25/24	>= 5.1.0 < 5.1.4 >= 5.0.0 <= 5.0.12 >= 4.2.0 <= 4.2.10
CVE-2022-41951	High	November 27, 2023 11/27/23	>= 4.1.0 <= 4.1.13 >= 4.2.0 <= 4.2.10 >= 5.0.0 < 5.0.8
XSS vulnerability in translations	Medium	January 12, 2022 1/12/22	>= 3.1.0 < 3.1.29 >= 4.1.0 < 4.1.17 >= 4.2.0 < 4.2.8
CVE-2021-43852	High	January 4, 2022 1/4/22	>= 4.1.0 < 4.1.14 >= 4.2.0 < 4.2.8
CVE-2021-41236	Medium	January 4, 2022 1/4/22	>= 3.1.0 < 3.1.21 >= 4.1.0 < 4.1.14 >= 4.2.0 < 4.2.8

shopware / platform

60 vulnerabilities found

Title	Severity	Date	Affected Version
Shopware Customer Orders can be canceled, even if refunds are disabled	Medium	October 21, 2025 10/21/25	>= 6.7.0.0 < 6.7.3.1 < 6.6.10.7
Shopware exposes sensitive user information via CSV export mapping	Medium	October 21, 2025 10/21/25	>= 6.7.0.0 < 6.7.3.1 < 6.6.10.7
Shopware vulnerable to Server-Side Request Forgery (SSRF) – order invoice	Low	October 21, 2025 10/21/25	>= 6.7.0.0 < 6.7.3.1 < 6.6.10.7
Shopware vulnerable to path traversal via Plugin upload	Low	October 21, 2025 10/21/25	>= 6.7.0.0 < 6.7.3.1 < 6.6.10.7
Shopware vulnerable to MediaVisibilityRestrictionSubscriber bypass when reading media entities by aggregating fields individually	Medium	October 21, 2025 10/21/25	>= 6.7.0.0 < 6.7.3.1 < 6.6.10.7
CVE-2025-7954	Medium	August 6, 2025 8/6/25	<= 6.6.10.4
CVE-2025-32378	Low	April 9, 2025 4/9/25	>= 6.6.0.0-rc1 < 6.6.10.3 >= 6.7.0.0-rc1 < 6.7.0.0-rc2 < 6.5.8.17
Shopware Broken ACL on Document retrieval to access other customers documents	Medium	April 8, 2025 4/8/25	>= 6.6.0.0 < 6.6.10.3 >= 6.7.0.0-rc1 < 6.7.0.0-rc2 < 6.5.8.17
CVE-2025-27892	High	April 8, 2025 4/8/25	>= 6.6.0.0 < 6.6.10.3 >= 6.7.0.0-rc1 < 6.7.0.0-rc2 == 6.7.0.0-rc1 < 6.5.8.18
CVE-2025-30151	High	April 8, 2025 4/8/25	>= 6.6.0.0 < 6.6.10.3 >= 6.7.0.0-rc1 < 6.7.0.0-rc2 < 6.5.8.17
CVE-2025-30150	Medium	April 8, 2025 4/8/25	>= 6.6.0.0 < 6.6.10.3 >= 6.7.0.0-rc1 < 6.7.0.0-rc2 == 6.7.0.0-rc1 < 6.5.8.18
CVE-2024-42355	High	August 8, 2024 8/8/24	< 6.5.8.13 >= 6.6.0.0 < 6.6.5.1
CVE-2024-42356	High	August 8, 2024 8/8/24	< 6.5.8.13 >= 6.6.0.0 < 6.6.5.1
CVE-2024-42357	High	August 8, 2024 8/8/24	< 6.5.8.13 >= 6.6.0.0 < 6.6.5.1
CVE-2024-42354	Medium	August 8, 2024 8/8/24	< 6.5.8.13 >= 6.6.0.0 < 6.6.5.1
CVE-2024-31447	Medium	April 8, 2024 4/8/24	>= 6.3.5.0 < 6.5.8.8 >= 6.6.0.0-rc1 < 6.6.1.0
CVE-2024-27917	High	March 6, 2024 3/6/24	>= 6.5.8.0 < 6.5.8.7
CVE-2024-22407	Low	January 16, 2024 1/16/24	< 6.5.7.4
CVE-2024-22406	Critical	January 16, 2024 1/16/24	< 6.5.7.4
CVE-2023-2017	High	April 17, 2023 4/17/23	< 6.4.20.1
CVE-2023-22734	Low	January 17, 2023 1/17/23	< 6.4.18.1
CVE-2023-22732	Low	January 17, 2023 1/17/23	< 6.4.18.1
CVE-2023-22733	Low	January 17, 2023 1/17/23	< 6.4.18.1
CVE-2023-22730	Medium	January 17, 2023 1/17/23	< 6.4.18.1
CVE-2023-22731	Critical	January 17, 2023 1/17/23	< 6.4.18.1
CVE-2022-24872	High	April 20, 2022 4/20/22	< 6.4.10.1
CVE-2022-24871	High	April 20, 2022 4/20/22	< 6.4.10.1
CVE-2022-24747	Medium	March 9, 2022 3/9/22	< 6.4.8.2
CVE-2022-24746	Medium	March 9, 2022 3/9/22	< 6.4.8.1
CVE-2022-24745	Low	March 9, 2022 3/9/22	< 6.4.8.2
CVE-2022-24744	Low	March 9, 2022 3/9/22	< 6.4.8.1
Webcache Poisoning in shopware/platform and shopware/core	Critical	November 24, 2021 11/24/21	< 6.4.6.1
CVE-2021-37711	High	August 16, 2021 8/16/21	< 6.4.3.1
CVE-2021-37710	High	August 16, 2021 8/16/21	< 6.4.3.1
CVE-2021-37709	Medium	August 16, 2021 8/16/21	< 6.4.3.1
CVE-2021-37708	High	August 16, 2021 8/16/21	< 6.4.3.1
CVE-2021-37707	Medium	August 16, 2021 8/16/21	< 6.4.3.1
non-admin users can create integration role with administrator role	Medium	June 28, 2021 6/28/21	< 6.4.1.1
Internal hidden fields are visible on to many associations in admin api	Medium	June 28, 2021 6/28/21	< 6.4.1.1
Private files publicly accessible with Cloud Storage providers	High	June 28, 2021 6/28/21	< 6.4.1.1
Creation of order credits was not validated by acl in admin orders	Low	June 28, 2021 6/28/21	< 6.4.1.1
Canceling of orders not related to the logged-in user	Medium	June 28, 2021 6/28/21	< 6.4.1.1
CVE-2021-32716	Low	June 24, 2021 6/24/21	< 6.4.1.1
CVE-2021-32717	High	June 24, 2021 6/24/21	< 6.4.1.1
CVE-2021-32711	Critical	June 24, 2021 6/24/21	< 6.3.5.1
CVE-2021-32710	Medium	June 24, 2021 6/24/21	< 6.3.5.2
CVE-2021-32709	Low	June 24, 2021 6/24/21	< 6.4.1.1
After order payment process manipulation in shopware/platform and shopware/core	Critical	April 13, 2021 4/13/21	< 6.3.5.3
Leak of information via Store-API aggregations in shopware/platform and shopware/core	Critical	April 13, 2021 4/13/21	< 6.3.5.3
Authenticated remote code execution	Medium	March 12, 2021 3/12/21	< 6.3.5.2

orchid / platform

2 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2023-36825	Critical		July 11, 2023 7/11/23	>= 14.0.0-alpha4 < 14.5.0 == 14.0.0-alpha5 == 14.0.0-alpha6 == 14.0.0-alpha7 == 14.0.0 == 14.0.0-alpha4 >= 14.0.1 < 14.5.0
CVE-2020-15263	High		October 19, 2020 10/19/20	>= 9.0.0 < 9.4.4

1e / platform

5 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2024-7211	Low	August 1, 2024 8/1/24	== 24.7 == 23.11.1.15 == 23.7.1.80 == 8.4.1.229
CVE-2023-5964	Critical	November 6, 2023 11/6/23	< 23.0
CVE-2023-45163	Critical	November 6, 2023 11/6/23	< 18.1
CVE-2023-45161	Critical	November 6, 2023 11/6/23	< 20.1
CVE-2023-45162	Critical	October 13, 2023 10/13/23	== 8.1.2 == 8.4.1 == 9.0.1 == 23.7.1

fuyang_lipengjun / platform

15 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2025-57210	High	December 4, 2025 12/4/25	== 1.0.0
CVE-2025-57212	High	December 4, 2025 12/4/25	== 1.0.0
CVE-2025-57213	High	December 4, 2025 12/4/25	== 1.0.0
CVE-2025-10822	Low	September 23, 2025 9/23/25	== 1.0.0
CVE-2025-10821	Low	September 22, 2025 9/22/25	== 1.0.0
CVE-2025-10820	Low	September 22, 2025 9/22/25	== 1.0.0
CVE-2025-10819	Low	September 22, 2025 9/22/25	== 1.0.0
CVE-2025-10676	Low	September 18, 2025 9/18/25	== 1.0.0
CVE-2025-10674	Low	September 18, 2025 9/18/25	== 1.0.0
CVE-2025-10675	Low	September 18, 2025 9/18/25	== 1.0.0
CVE-2025-10086	Medium	September 8, 2025 9/8/25	== 1.0.0
CVE-2025-9936	Low	September 4, 2025 9/4/25	== 1.0.0
CVE-2025-7936	Medium	July 21, 2025 7/21/25	== 1.0.0
CVE-2025-7934	Medium	July 21, 2025 7/21/25	<= 2025-06-29
CVE-2025-7935	Medium	July 21, 2025 7/21/25	<= 2025-06-29

Showing vulnerabilities for 9 products matching "platform". Each product has independent pagination.

Vulnerability Database

317,182