2 matches found
EUVD-2026-23904
OpenMage LTS: Customer File Upload Extension Blocklist Bypass → Remote Code Execution...
CVE-2026-40488
OpenMage LTS (Magento LTS) before 20.17.0 uses an incomplete blocklist (forbidden_extensions = php,exe) for custom option file uploads. This can be bypassed by using alternative PHP executable extensions such as .phtml, .phar, .php3, .php4, .php5, .php7, and .pht, allowing files to be uploaded to...