openmage Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by openmage
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Magento LTS's guest order "protect code" can be brute-forced too easily
CVE-2023-41879OpenmageMagento-lts7.5HIGHOpenMage LTS DataFlow upload remote code execution vulnerability
CVE-2021-41231OpenmageMagento-lts7.2HIGHOpenMage LTS authenticated remote code execution through layout update
CVE-2021-41144OpenmageMagento-lts8.8HIGHOpenMage LTS arbitrary file deletion in customer media allows for remote code execution
CVE-2021-41143OpenmageMagento-lts7.2HIGHOpenMage LTS arbitrary command execution in custom layout update through blocks
CVE-2021-39217OpenmageMagento-lts7.2HIGHData Flow Sanitation Issue Fix
CVE-2021-32759OpenmageMagento-lts7.2HIGHLayout XML Arbitrary Code Fix
CVE-2021-32758OpenmageMagento-lts7.2HIGHBackport for CVE-2021-21024 Blind SQLi from Magento 2
CVE-2021-21427OpenmageMagento-lts9.1CRITICALFixes a bug in Zend Framework's Stream HTTP Wrapper
CVE-2021-21426OpenmageMagento-lts9.8CRITICALCMS Editor code execution
CVE-2020-26295OpenmageMagento-lts8.7HIGHWidget instances allows a hacker to inject an executable file on the server on OpenMage
CVE-2020-26285OpenmageMagento-lts8.7HIGHLayout XML RCE Vulnerability in OpenMage
CVE-2020-26252OpenmageMagento-lts8.7HIGHRCE in Magento
CVE-2020-15244OpenmageMagento-lts8HIGHObservable Timing Discrepancy in OpenMage LTS
CVE-2020-15151OpenmageMagento-lts8HIGH