Magento Lts Security Vulnerabilities and Issues — Magento Lts CVE List

Lucene search

OpenmageMagento Lts

3 matches found

CVE•added 2021/01/20 10:15 p.m.•47 views

CVE-2020-26252

OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.6, there is a vulnerability which enables remote code execution. In affected versions an administrator with permission to update product data to be able to store an executable file on the server a...

8.7CVSS7.5AI score0.01707EPSS

CVE•added 2021/01/21 2:15 p.m.•41 views

CVE-2020-26295

OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, an administrator with permission to import/export data and to edit cms pages was able to inject an executable file on the server via layout xml. The latest OpenMage Versions up from 19.4.9 and ...

8.7CVSS7.1AI score0.00751EPSS

CVE•added 2021/01/21 2:15 p.m.•40 views

CVE-2020-26285

OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, there is a vulnerability which enables remote code execution. In affected versions an administrator with permission to import/export data and to create widget instances was able to inject an ex...

8.7CVSS7.5AI score0.01923EPSS