31 bulletins · catalog snapshot 2026-06-16

Magento 2 Security Patch Tracker

Adobe Commerce + Magento Open Source security bulletins, with CVE references, affected and fixed version ranges, and a quick "is my version safe?" check.

Get notified when Adobe ships a new bulletin

One email per new bulletin (or batch, when several drop together). Filter by severity. Unsubscribe with one click from any email. Free.

Have a MageSmith account? Manage your subscription in app — auto-confirmed, no email round-trip.

Is my version safe?

Paste your Magento version (e.g. 2.4.6-p3) to see which bulletins still apply.

All 31 Critical 7 Important 1 Moderate 23

1 result(s) in important · Clear

APSB23-50 important 2023-10-10

3 CVE(s)

Security update available for Adobe Commerce | APSB23-50

Multiple vulnerabilities including stored XSS in the admin panel and improper access control on the REST API. Important severity — patch in your next release window.

Catalog mirrors Adobe Security Bulletins. Always verify against the official source before patching production — this catalog is rebuilt on each MageSmith release and may lag a brand-new bulletin by days.

Every Magento dev tool, in one hosted workspace.

Free to sign up. Nothing to install. Drafts, audits, and projects saved across every tool.

Open app →