openmage/magento-lts Security Advisories - Packagist | Ecosyste.ms: Advisories

openmage/magento-lts

packagist · A fork of Magento-1 that is accepting bug fixes (backward compatible, drop in replacement for official Magento) · Repository · Package

High Security Advisories for openmage/magento-lts in packagist Clear Filters

High

almost 2 years ago

Magento LTS vulnerable to Stored XSS via TinyMCE WYSIWYG Editor GSA_kwCzR0hTQS05ajV3LTJjcWMtY3dqOc4AA3oh

packagist openmage/magento-lts

High

about 2 years ago

Magento LTS's guest order "protect code" can be brute-forced too easily GSA_kwCzR0hTQS05MzU4LWNwdngtYzJxcM4AA1zS

packagist openmage/magento-lts

High

over 2 years ago

DataFlow upload remote code execution vulnerability GSA_kwCzR0hTQS1oNjMyLXA3NjQtcGpxbc4AAxOZ

packagist openmage/magento-lts

High

over 2 years ago

Fix for authenticated remote code execution through layout update GSA_kwCzR0hTQS01ajJnLTNwaDQtcmd2bc4AAxOY

packagist openmage/magento-lts

High

over 2 years ago

Fix for arbitrary file deletion in customer media allows for remote code execution GSA_kwCzR0hTQS01dnB2LXhtY2otOXE4Nc4AAxOV

packagist openmage/magento-lts

High

over 2 years ago

Fix for arbitrary command execution in custom layout update through blocks GSA_kwCzR0hTQS1jOXEzLXI0cnYtbWptN84AAxOU

packagist openmage/magento-lts

High

about 4 years ago

Layout XML Arbitrary Code Fix MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2cnItdjJqMi0yNWZo

packagist openmage/magento-lts

High

about 4 years ago

Data Flow Sanitation Issue Fix MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhtOWYtdnhteC00bTU4

packagist openmage/magento-lts

High

almost 5 years ago

RCE via PHP Object injection via SOAP Requests MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpyZ2YtdmZ3Mi1oajI2

packagist openmage/magento-lts

High

about 5 years ago

Observable Timing Discrepancy in OpenMage LTS MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyZjIteG02eC00NnA2

packagist openmage/magento-lts

Filter by Severity

High 10 Moderate 4 Critical 2 Low 1